last executing test programs:

5m23.883080707s ago: executing program 4 (id=233):
r0 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x1800, 0x0)
read$usbmon(r0, 0x0, 0x2160)

5m23.162384506s ago: executing program 4 (id=236):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="66617374626f6f742c71756f7461000018bbdecde39739fcd1df176dde746ec834120600000000003b814e50a959736d6572462abc30ef5b65c70f73ecea54b5e5bea9836c319f653557e79a002208ce996dda659bd5ba0f4ce5c2080002223dc60000000000000044cd0a1e3686873600000000005493b4b81d5b9fa9b40fe4d76afc3a989c6d60044e89eb96e44d01a1034e3797ffa86870b82939f41ffa0f3d726f085663c29cbdc4c766a7eb77cc36160191acf5ae7469c82ab4145b595b987d75912a0fcd1c061835294cc0c618aba204f8adaa20c80108d356cd88cc86177056b06e7068c40f807d9e539f8f5b64a8ee0725aa8d00000000007cb6020d90ea79b8027cf75964dd86c2ed2b5e75779677aa8c76b848dd03dab190b5f02ec52830a17b01eaae1c3df076000000000000000000000000000083a48a6b926c668b9b90195018ea3619f9d80a0b894e212178e1a19909d764666264fa29e2c055fd7f8e67c2acfb75f0a8d41692f4542a575ee42ed94a0014fba44985cca9df12fe93bfaccf0122a6e7e593613ac0111701b125cc6799c43aa4ff708dc4a00a6decad26f0378072a571da000000b1a6bdf03fd56697e348b5b494f6fddb9f56142a47a40ef81690a7eca421bd0ad198afa58ce69d61c29deaa93c0efea0df04f20020ee84075b4e1a2ad43d1be1138de4668e7b6137545708790c501f1ed7f6a571d500000000000000"], 0x25, 0x55a8, &(0x7f00000014c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x58)

5m19.88030358s ago: executing program 4 (id=251):
mknodat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x81c0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000140)={0x4000}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000180)={0x4000, r0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0xd, 0x200200090}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000040)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = socket$inet6(0xa, 0x3, 0xff)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000006c0)={&(0x7f0000000780)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x7, [@func_proto={0x0, 0x3, 0x0, 0xd, 0x0, [{}, {}, {0x3}]}, @enum={0x0, 0x1, 0x0, 0x6, 0x4, [{0x5}]}]}, {0x0, [0x0, 0x0, 0x61, 0x3e, 0x61]}}, &(0x7f0000000600)=""/152, 0x57, 0x98, 0x1}, 0x28)
connect$inet6(r5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', 0xffffffffffffffff, 0x0, 0x8}, 0x18)
landlock_restrict_self(r1, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x1, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x1, 0x0)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff8000}]})
close_range(r6, 0xffffffffffffffff, 0x0)
syz_emit_ethernet(0x74, &(0x7f0000000380)=ANY=[@ANYBLOB="0180c2000000000000000000080045000024000000000073907800000300ac1414aa00000000fe9a907802000000000000000f7a1d5b2a9b78d28ae8deca004d184b65b766cd88344d13d23632b37c1597d7fc8bdff85b0057dd5231b0cd1fa747dc4a26b3a819ec60db1da4a5120b8add825b078a5b3faa3d38e15fe8766942052e97f07960a4d08a10f59e8209b02ec845dccbe8fb937283a6788ec6e0907fea6888b7564ac9f8f00eff42edd670ca8d71ecaf30c56f5f590a754269aa0b52f958209141"], 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x121101, 0x0)
clock_settime(0xfffffffb, &(0x7f0000000280)={0x0, 0x989680})
truncate(&(0x7f0000000240)='./file0\x00', 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x10, 0x2, &(0x7f0000000140)=ANY=[@ANYRES64=r1], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1}, 0x94)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x8, 0x2}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r7, 0x0, &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000800)={r7, &(0x7f0000000780)}, 0x20)

5m16.082808304s ago: executing program 4 (id=261):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./bus\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x1, 0x14fe, &(0x7f0000002180)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==")
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000000)='binfmt_misc\x00', 0xc00, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f0000000240)='./file0/../file0\x00')
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='./file0/../file0\x00')

5m13.985318362s ago: executing program 4 (id=267):
r0 = fsopen(&(0x7f0000000100)='binder\x00', 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents64(r2, &(0x7f0000000140)=""/53, 0x35)
getdents64(r2, 0xfffffffffffffffe, 0x29)

5m13.032325525s ago: executing program 4 (id=274):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file2\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x52e, &(0x7f0000000e00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
creat(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket(0x1e, 0x1, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x85, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

5m12.757225718s ago: executing program 32 (id=274):
syz_mount_image$ext4(&(0x7f0000000880)='ext2\x00', &(0x7f0000000000)='./file2\x00', 0x21000e, &(0x7f0000000380), 0xde, 0x52e, &(0x7f0000000e00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
creat(0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket(0x1e, 0x1, 0x0)
setsockopt$packet_tx_ring(r2, 0x10f, 0x85, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

4m26.0275691s ago: executing program 1 (id=404):
syz_mount_image$ext4(&(0x7f0000000d80)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x21881e, &(0x7f00000000c0)={[{@mb_optimize_scan}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@stripe={'stripe', 0x3d, 0x4}}]}, 0x1, 0x50f, &(0x7f0000000140)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x107042, 0x124)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./file2\x00', 0x187842, 0x0)
r2 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x94)
ftruncate(r2, 0x2007ffc)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000240)={0x3920e, r0, 0x3, 0x5, 0x5, 0x53000000})

4m23.952086916s ago: executing program 1 (id=409):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000540)=0x4)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket(0x40000000015, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r1, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000380)={0x7, 0x0, <r2=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN_FLAGS(0xffffffffffffffff, 0x3ba0, &(0x7f0000000200)={0x48, 0x2, r2})
ioctl$IOMMU_IOAS_ALLOC(0xffffffffffffffff, 0x3b81, &(0x7f0000000140)={0xc, 0x0, <r3=>0x0})
r4 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000002500), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000002640)={0x0, 0x0, &(0x7f0000002600)={&(0x7f00000003c0)=ANY=[@ANYBLOB="4cb717950744651acff508182c98b102bc886b584a35b7d8230844a708d40fdda8d389e715cfe7729db0e5446235124ad5", @ANYRES16=r4, @ANYBLOB="010027bd7000fcdbdf2507000000080004007f0000011400020000000000000000000000ffff6401010114000300"], 0x44}, 0x1, 0x0, 0x0, 0x8010}, 0x4040)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r5}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r5, &(0x7f00000021c0)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INIT(r5, &(0x7f0000004200)={0x50, 0x0, r6}, 0x50)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r5, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r5, &(0x7f00000067c0), 0x2000, &(0x7f00000087c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000008880)=ANY=[@ANYBLOB="30000000000000000000000000000000000000000400000000000000232c2c2d08000000000000000000"], 0x0, 0x0, 0x0, 0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(0xffffffffffffffff, 0x3b85, &(0x7f0000000480)={0x28, 0x4, r3, 0x0, &(0x7f0000fff000/0x1000)=nil, 0x1000, 0x4})
ioctl$IOMMU_HWPT_SET_DIRTY_TRACKING(0xffffffffffffffff, 0x3b8b, &(0x7f0000000080)={0x10, 0x1})

4m21.211425435s ago: executing program 1 (id=418):
sched_setscheduler(0x0, 0x2, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
socket$key(0xf, 0x3, 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$binderfs(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000180)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="01000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r3}, &(0x7f00000001c0), &(0x7f0000000240)}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x1c1341, 0x0)
r5 = socket(0x1e, 0x1, 0x0)
connect$tipc(r5, &(0x7f0000000040)=@id, 0x10)
shutdown(r5, 0x2)

4m19.623931606s ago: executing program 1 (id=422):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0xec3294b766e88361, 0x0)

4m18.292106309s ago: executing program 1 (id=426):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup.cpu/cgroup.procs\x00', 0xa00, 0x1c2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000030000850000001b000000b700000000"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x18)
bind$tipc(0xffffffffffffffff, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(0x0, r8)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYRESDEC=r7], 0x50)
r9 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r9, r1, 0x0, 0x3a)

4m16.796499581s ago: executing program 1 (id=432):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455cb, 0x400000009)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000200), &(0x7f00000000c0)='./bus\x00', 0x1018084, &(0x7f000000cfc0)=ANY=[@ANYBLOB="6e6f646973636172642c6261636b67726f756e645f67633d73796e632c6e6f696e6c696e655f646174612c6261636b67726f756e645f67633d6f6e2c6661756c745f747970653d30303030303030303030303030303030303030362c64697361626c655f726f6c6c5f666f72776172642c6261636b67726f756e645f67633d6f6e2c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6e6f696e6c696e655f78617474722c6a71666d743d7666736f6c642c6e6f61636c2c00a1a75ac439087a5b11ab7891dd39dd9bc0d7"], 0x1, 0x5509, &(0x7f00000079c0)="$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")
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000200)={0x2, @vbi={0x9, 0x7, 0x80000000, 0x34524742, [0x1001, 0x7], [0x9, 0xfff], 0x108}})
fcntl$getown(0xffffffffffffffff, 0x9)
mlockall(0x2)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x20000, 0x0)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

4m16.14957745s ago: executing program 33 (id=432):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455cb, 0x400000009)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000200), &(0x7f00000000c0)='./bus\x00', 0x1018084, &(0x7f000000cfc0)=ANY=[@ANYBLOB="6e6f646973636172642c6261636b67726f756e645f67633d73796e632c6e6f696e6c696e655f646174612c6261636b67726f756e645f67633d6f6e2c6661756c745f747970653d30303030303030303030303030303030303030362c64697361626c655f726f6c6c5f666f72776172642c6261636b67726f756e645f67633d6f6e2c6e6f757365725f78617474722c636865636b706f696e743d64697361626c652c757365725f78617474722c6673796e635f6d6f64653d7374726963742c6e6f696e6c696e655f78617474722c6a71666d743d7666736f6c642c6e6f61636c2c00a1a75ac439087a5b11ab7891dd39dd9bc0d7"], 0x1, 0x5509, &(0x7f00000079c0)="$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")
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000040)={0xf0f024})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000200)={0x2, @vbi={0x9, 0x7, 0x80000000, 0x34524742, [0x1001, 0x7], [0x9, 0xfff], 0x108}})
fcntl$getown(0xffffffffffffffff, 0x9)
mlockall(0x2)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x20000, 0x0)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)

3m15.836400049s ago: executing program 3 (id=677):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000040)=0x25c5, 0x4)
sendmmsg$inet6(r0, &(0x7f00000000c0)=[{{&(0x7f00000001c0)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x40004)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x18)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
recvfrom(r0, 0x0, 0x0, 0x40016300, 0x0, 0x0)

3m15.259821637s ago: executing program 3 (id=682):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
r0 = socket$qrtr(0x2a, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$qrtr(r0, &(0x7f00000000c0)={0x2a, 0x1, 0xfffffffe}, 0xc)

3m14.905874636s ago: executing program 3 (id=684):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x8000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="370200007d02000005"], 0xe9)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x60042, 0x0)
close(r5)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x80, 0x0, 0x7fff0000}]})
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000000)={0x4, 0x0, 0x16, 0x1, 0x100, &(0x7f0000000040)="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"})

3m13.939066658s ago: executing program 3 (id=697):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x1000c40, &(0x7f00000002c0), 0x5, 0x51c, &(0x7f0000000700)="$eJzs3cFvI1cZAPBvZjebNE2bFCoVENClFBa0WjvxtlHVU7mAUFUJUXHikIbEG0Vx4ih2ShNWavI/IFGJA4ITZyQQHCr1xBHBDW69lANSgRWoQeJgNONx1t3YG3c3awv795NGM29mMt97Y8178RfHL4CJdTUijiLiSkS8ERHzxf6kWOKV9pKd99Gd22snd26vJdFqvf6PJD+e7Yuun8k8XlxzJiK++62IHyRn4zYODrdWa7XqXlEuN7d3y42Dwxub26sb1Y3qTqWyvLS8+NLNFysDtWNmgHOe3f7Vh9/cfPV77/7uCx/86ejrP8qqNVcc627HRWo3feo0TuZyRLz6KIKNwKWiPVdGXREeSBoRn4qI5/Lnfz4u5a/mYHo81gDA/4FWaz5a891lAGDcpXkOLElLRS5gLtK0VGrn8J6O2bRWbzSv36rv76y3c2ULMZXe2qxVF4tc4UJMJVl56e1s+265Eh8v34yIpyLix9OP5eXS2uB5BgDgYj1+z/j/7+n2+A8AjLmeH57pfn++Mry6AADDMciHZwGA8WL8B4DJc3f8nx1pPQCA4fH+HwAmj/EfACbN+53x/9KoawIADMV3XnstW1onxfdfr795sL9Vf/PGerWxVdreXyut1fd2Sxv1+katWlqrb593vVq9vrv0Quy/VW5WG81y4+BwZbu+v9Ncyb/Xe6U6NZRWAQD389Sz7/0liYijlx/Ll+iay8FYDeMtHXUFgJGR84fJ5Vu4YXJ5jw+T69fFf/yeN5dn348Iv/MAQVtvP8APARft2mfl/2FSyf/D5JL/h8kl/w+Tq9VK+s35n56eAgCMlU+Y4/cnARhDQ/37PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIyJuXxZ6CqnaakU8URELMRUcmuzVl2MiCcj4s/TU9NZeWmkNQYAHl76t6SY/+va/PNz9x69kvxnOl9HxA9/+vpP3lptNveWsv3/PN3ffKfYXxlF/QGA83TG6c443vHRndtrnWWY9fnwG+3JRbO4J8XSPnI5LmerP87kkw7P/itplwvZ7yuXLiD+0XFEfKZX+5M8N7JQzHx6b/ws9hNDjZ9+LH6aH2uvs3vx6TNXnu4b87y5XmFSvJf1P6/0ev7SuJqvZ3pOfjyT91APr9P/nZzp/zrP+0ze1/Tq/64OGuOF33+777HjiM9d7hU/OY2f9In//IDx3//8F5/rd6z184hr0Tt+d6xyc3u33Dg4vJHd+OpGdadSWV5aXnzp5ouVcp6jLncy1d3aI8TfX77+ZN/2//K3RUd5Nv7MOe3/yn1b3TrtgH/x3ze+/6V+8Y8jvvbl3q//0/eJn42JXy22+/f0bauzv+k7fXcWf719/48/6et//Zy4HR/89XB9wFMBgCFoHBxurdZq1b0L3ZiKC75g10byiOpsYwQbMcRY2a/JD3udZ4qU2Wrn+ek+5w8/e/eZbN/I7+qFbIyuTwKG4+5DP+qaAAAAAAAAAAAAAAAA/TzyfydKR91CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAxtn/AgAA//8LKMVX")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(0x0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0xec3294b766e88361, 0x0)

3m11.260682488s ago: executing program 3 (id=704):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x10c}}, 0x0)

3m9.279581243s ago: executing program 3 (id=720):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001900)={&(0x7f0000000040)='sys_enter\x00'}, 0x18)
brk(0x200000001000)

3m8.557263482s ago: executing program 34 (id=720):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001900)={&(0x7f0000000040)='sys_enter\x00'}, 0x18)
brk(0x200000001000)

2m13.890945317s ago: executing program 0 (id=1121):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000980)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
close_range(r1, 0xffffffffffffffff, 0x200000000000000)

2m13.453585313s ago: executing program 0 (id=1124):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000e40)=ANY=[@ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000180)='sys_enter\x00', r0, 0x0, 0x6}, 0x18)
r1 = fsopen(&(0x7f0000000100)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x1, 0x0)
fchmodat(r2, &(0x7f0000000000)='.\x00', 0xe0)

2m13.280880505s ago: executing program 0 (id=1127):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e00)=@base={0x5, 0x4, 0x4, 0x5}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000100)={0x0, 0x7}, 0x4)
setsockopt$packet_int(r2, 0x107, 0x16, &(0x7f0000000000)=0x8, 0x4)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000009c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x28}, 0x1, 0x0, 0x0, 0x24000144}, 0x20000050)

2m13.095479294s ago: executing program 0 (id=1130):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000001d00)={&(0x7f00000017c0)={0x2, 0x0, @private=0xa010101}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_args={0x48, 0x114, 0x1, {{0x0, 0x3}, {&(0x7f00000001c0)=""/117, 0x75}, &(0x7f0000001b40)=[{&(0x7f0000000140)=""/86, 0x56}], 0x1}}], 0x48}, 0x0)

2m12.899836631s ago: executing program 0 (id=1133):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, 0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x88c4}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nodioread_nolock}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x563, &(0x7f00000007c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x0, 0x0, 0x8000c66)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x189)
sendfile(r3, r3, 0x0, 0x800000009)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000002000)=""/102400, 0x19000)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x8}, 0x8)
inotify_init1(0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fc"], 0x0)
socket$inet6(0xa, 0x2, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4001000)

2m6.572301485s ago: executing program 0 (id=1172):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)

1m51.553940928s ago: executing program 35 (id=1172):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)

12.823367754s ago: executing program 2 (id=1888):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, 0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x88c4}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x0, 0x0, 0x8000c66)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x189)
sendfile(r3, r3, 0x0, 0x800000009)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x8}, 0x8)
inotify_init1(0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fc"], 0x0)
socket$inet6(0xa, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4001000)

8.591125212s ago: executing program 2 (id=1913):
creat(0x0, 0x48)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000140), &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
connect$can_bcm(0xffffffffffffffff, &(0x7f00000000c0), 0x10)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x47f9, 0x0, 0x0, 0x0, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000040)={0x77359400}, 0x0)

7.628399371s ago: executing program 2 (id=1925):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, 0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x5, 0x8b}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x88c4}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r2, 0x0, 0x0, 0x8000c66)
r3 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x189)
sendfile(r3, r3, 0x0, 0x800000009)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000002000)=""/102400, 0x19000)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000280)={0x8}, 0x8)
inotify_init1(0x0)
syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fc"], 0x0)
socket$inet6(0xa, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(r5, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48001}, 0x4001000)

3.352195722s ago: executing program 2 (id=1948):
r0 = syz_usb_connect$uac1(0x0, 0xac, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000000000106b1d010140000102030109029a0003010000000904000000010100000a24010000000201020c24020000000000000800000524050000082407000000009e0c240700000000a3e82f07070d240701060000fd80000000e80924030000000001"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000140)={0x2c, 0x0, &(0x7f00000002c0)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000001840)={0x14, 0x0, &(0x7f0000000180)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x41f}}}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000c40)={0x84, &(0x7f0000000740)={0x20, 0x3, 0x2, "b23b"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000000c0)={0x44, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x20, 0x82, 0x2, "c9a7"}, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000540)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000a00)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000980)={0x20, 0x84, 0x2, "46e2"}, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000b80)={0x44, 0x0, 0x0, 0x0, &(0x7f00000009c0)={0x20, 0x81, 0x2, "b822"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000d00)={0x84, &(0x7f0000000600)={0x40, 0x16, 0x6, "6a3dd1c227a7"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

2.995838783s ago: executing program 8 (id=1953):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
sendmsg$SMC_PNETID_DEL(r1, 0x0, 0x4000)

2.860234269s ago: executing program 8 (id=1954):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454da, &(0x7f0000000080)={'batadv0\x00'})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000240)={'pim6reg0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x103442, 0x0)
ioctl$TUNSETIFF(r1, 0x400454da, &(0x7f0000000140)={'batadv0\x00'})
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000100)={'pimreg0\x00', 0x411})

2.521617574s ago: executing program 8 (id=1958):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000040)={0x0, 0x7, 0xfa00, {0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x13f}}, 0x20)
write$RDMA_USER_CM_CMD_LISTEN(r0, &(0x7f00000000c0)={0x7, 0x8, 0xfa00, {r1}}, 0x10)
close(r0)

2.380256406s ago: executing program 6 (id=1960):
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_int(r0, 0x1, 0x26, 0x0, &(0x7f00000000c0))

2.335761366s ago: executing program 8 (id=1961):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000001b40)={&(0x7f0000000000)={0x14, r2, 0x62c21a4ade68aba1, 0x70bd25, 0x0, {{0x32}, {@val={0x8, 0x117, 0x1005c}, @val={0x8}, @void}}}, 0x24}, 0x1, 0x0, 0x0, 0x4853}, 0x20000010)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r1, 0x0, 0x8800)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

2.185575748s ago: executing program 6 (id=1962):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001340)={0x11, 0x10, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004000100000100c28000050003000f"], 0x48}, 0x1, 0x0, 0x0, 0x40000c0}, 0x40000)

2.118063278s ago: executing program 5 (id=1963):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000060000b000000000000000008500000041000000850000002300000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000100)={r0, 0x0, 0x4, 0x0, &(0x7f0000000000)='\a\x00\x00\x00', 0x0, 0x8005, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2.114407453s ago: executing program 8 (id=1964):
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$smc(0x0, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9031, 0xffffffffffffffff, 0xffffe000)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00'}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0x12, 0x8, 0x4, 0x7cb4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x48)

2.002371119s ago: executing program 6 (id=1965):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
ioctl$KDFONTOP_GET(r2, 0x4b72, &(0x7f00000000c0)={0x1, 0x1, 0x19, 0xf, 0x87, &(0x7f0000000f00)})

1.933237278s ago: executing program 5 (id=1966):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000a00)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
r0 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x34, r0, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_ETHNAME={0x14, 0x2, 'bond0\x00'}, @SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x0)
sendmsg$SMC_PNETID_DEL(r1, 0x0, 0x4000)

1.853741022s ago: executing program 5 (id=1967):
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x4e, 0x181240)
fadvise64(r0, 0x5, 0x7, 0x3)

1.694081096s ago: executing program 6 (id=1969):
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0x30}, 0x40880)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r0, 0x18000000000002a0, 0x16, 0x0, &(0x7f0000000140)="b9ff0300600d698cff9e14f008004de7f9c7643600e0", 0x0, 0xe00, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x25dfdbfc, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x200000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in6=@empty, 0x2, 0x2b}, 0xa, @in6=@local, 0x0, 0x4}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

1.69285258s ago: executing program 9 (id=1970):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/vmstat\x00', 0x0, 0x0)
r1 = syz_io_uring_setup(0x49d, &(0x7f00000003c0)={0x0, 0x79ac, 0x400, 0x7ffd, 0x32c, 0x0, r0}, &(0x7f0000000340)=<r2=>0x0, &(0x7f0000000040)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000000)=0x2000ffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, 0x0)
io_uring_enter(r1, 0xfd0, 0x4c1, 0x43, 0x0, 0x0)

1.564299643s ago: executing program 5 (id=1971):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8943, &(0x7f0000000100)={'macvtap0\x00', @random="b40007350060"})

1.515294999s ago: executing program 5 (id=1972):
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
socket$kcm(0x2, 0x200000000000001, 0x0)
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000), 0x101000, 0x800, 0x3, 0x1}, 0x20)
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'veth1_virt_wifi\x00', <r2=>0x0})
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4)
bind$xdp(r0, &(0x7f00000001c0)={0x2c, 0x8, r2, 0x1000000}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000120000002400000008000000850000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000005c0)='sched_switch\x00', r3}, 0x18)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x8000000000, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x7fffffff, 0xfffffffffffffffc}, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000480)='kfree\x00', r4, 0x0, 0x7fffffffffffffff}, 0x18)

1.49000485s ago: executing program 9 (id=1973):
r0 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r0, &(0x7f00000001c0)={0x18, 0x0, {0x1, @broadcast, 'ip6_vti0\x00'}}, 0x1e)
r1 = openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_open_pts(r1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000840), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r2, 0x40047438, &(0x7f0000000180)=""/246)
pwritev(r2, &(0x7f0000000300)=[{&(0x7f0000000600)="8414", 0x2}], 0x1, 0xffffffff, 0x4)

1.341071077s ago: executing program 9 (id=1974):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_int(r0, 0x1, 0x26, 0x0, &(0x7f00000000c0))

1.339992862s ago: executing program 7 (id=1975):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0x40}, 0x18)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_PORT_INFO(r1, 0xc0a85320, &(0x7f00000005c0)={{0x80}, 'port1\x00', 0x72, 0x11cfa, 0x0, 0x8000007, 0x3, 0x4, 0x1, 0x0, 0x6})
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r2, 0x40505330, &(0x7f00000001c0)={0x800100, 0xffffffff, 0x22, 0xe1d9, 0x1101, 0xff})
close(r1)

1.284476641s ago: executing program 9 (id=1976):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000004c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x8001, 0x0, 0x0, 0x0, 0x35e6}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000040)='GPL\x00', 0x1, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.19712329s ago: executing program 9 (id=1977):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file1\x00', &(0x7f0000000080), 0x8000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20020008008f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r4}, 0x10)
r5 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
write$P9_RSTATu(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="370200007d02000005"], 0xe9)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x60042, 0x0)
close(r5)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x80, 0x0, 0x7fff0000}]})
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r6, 0x4b72, 0x0)

1.196349481s ago: executing program 7 (id=1978):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000300)='ext4_forget\x00', r1, 0x0, 0x800000}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000040), 0xfe, 0x4f2, &(0x7f0000000b00)="$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")

1.038604667s ago: executing program 7 (id=1979):
r0 = socket$kcm(0x2, 0x200000000000001, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x240048c1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ec0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000a3850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x2c6e02a6a3a98c83, 0x9, '\x00', 0x0, @fallback=0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r2, 0x4)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

1.023186359s ago: executing program 6 (id=1980):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5c, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=@ipv4_delrule={0x1c, 0x21, 0x105, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}}, 0x1c}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
utime(0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x2, 0x2}, 0x10)
socket$netlink(0x10, 0x3, 0x4)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f0000000000)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, @dev}})

952.29638ms ago: executing program 5 (id=1981):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, 0x0, 0x0)
r2 = semget(0x2, 0x0, 0x1)
semctl$SETALL(r2, 0x0, 0x11, 0x0)
syz_usb_connect$uac1(0x2, 0xa6, &(0x7f0000000340)=ANY=[], 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

513.574837ms ago: executing program 2 (id=1982):
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="8fed007907001175f37538e486dd6317ce2200102f00fe80000000000000875a65059ff57b00000000000000000000000000ac1414aa"], 0xcfa4)
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0xfffffef2, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2, 0x0, 0xa}, {0x90010022}]}, 0x94)
close(r2)
recvmsg$unix(r1, 0x0, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0x12, &(0x7f00000008c0), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r3, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x88be, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

489.619239ms ago: executing program 7 (id=1983):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r1, &(0x7f0000000080)={0x0, 0xffa1, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r3, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)

215.923288ms ago: executing program 9 (id=1984):
bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
write$tun(r2, &(0x7f0000000440)={@val, @void, @eth={@broadcast, @remote, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x452c, 0x0, 0x0, 0x0, 0x2f, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x0, 0x6558, 0x18, 0x0, @wg=@data={0x4, 0x0, 0xffffdd86}}}}}}}, 0xfdef)
setsockopt$sock_linger(r1, 0x1, 0x3c, &(0x7f0000000180)={0x1, 0x5}, 0x8)
sendmmsg(r1, &(0x7f0000000100)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)="1b", 0x40000}], 0x11}}], 0x1, 0x24008094)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r3, &(0x7f0000000200)={0xa, 0x0, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x101}, 0x1c)
getsockopt$sock_buf(r3, 0x1, 0x1c, 0x0, &(0x7f00000001c0)=0x3b)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000080)='kfree\x00', r5}, 0x18)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r6, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20)
r7 = socket$inet6(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'macvtap0\x00', <r8=>0x0})
setsockopt$inet6_mreq(r7, 0x29, 0x14, &(0x7f0000000000)={@mcast2, r8}, 0x14)
r9 = socket$inet6(0xa, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x66)
setsockopt$SO_BINDTODEVICE(r9, 0x1, 0x19, &(0x7f0000000080)='veth0_virt_wifi\x00', 0x10)
sendmsg$nl_route_sched(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x2000, {0x0, 0x0, 0x74, r8, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0x3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x14004804}, 0x840)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000100)={0x0, r4}, 0x8)

203.512827ms ago: executing program 7 (id=1985):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000480), r0)
sendmsg$NFC_CMD_SE_IO(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000540)={0x24, r1, 0x1, 0x70bd25, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x2}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x24040004)

199.537614ms ago: executing program 8 (id=1986):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffff"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r1, 0x0, 0x2}, 0x18)
r2 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000580)=ANY=[], 0x0)
close_range(r2, 0xffffffffffffffff, 0x200000000000000)

25.972798ms ago: executing program 7 (id=1987):
r0 = syz_open_procfs(0x0, &(0x7f0000000580)='attr/exec\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000880)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
r1 = syz_io_uring_setup(0x2e3b, &(0x7f0000000240)={0x0, 0x69e5, 0x10000, 0x0, 0x295, 0x0, r0}, &(0x7f00000003c0)=<r2=>0x0, &(0x7f0000001040)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000000200)=""/9, 0x9}], 0x1})
io_uring_enter(r1, 0x567, 0xa1ff, 0x0, 0x0, 0x0)

24.342379ms ago: executing program 2 (id=1988):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb8000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200002100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000001850000001b000000b70000000000070095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth0_vlan\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x10}}}, 0x24}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
syz_mount_image$iso9660(&(0x7f0000000500), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f00000010c0)=ANY=[@ANYBLOB="73686f776175bcfa3a41eeb9af6b116f632c634c65636b3d72656c617865642c0000001460b9800bac9385a8d74702c5840b4baf579fd168fab4a2064b055400a81ecbf871f58d7b6124"], 0x3, 0x54c, &(0x7f0000000ac0)="$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")

0s ago: executing program 6 (id=1989):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000680)=ANY=[@ANYBLOB="8c0000001000030400000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000005000128009000100766c616e0000000040000280060001000000000004000480280003800c00010040000000060000000c000100ff04000000000000d8fd010006000000090000000600050088a8000008000a00", @ANYRES32=r2, @ANYBLOB="08000500", @ANYRES32=r2], 0x8c}, 0x1, 0xba01, 0x0, 0x4004001}, 0x0)

kernel console output (not intermixed with test programs):

) comm="syz.2.911" name="file1" dev="loop2" ino=10 res=0 errno=0
[  314.900871][ T9420] syz.2.911: attempt to access beyond end of device
[  314.900871][ T9420] loop2: rw=2049, sector=77824, nr_sectors = 984 limit=40427
[  315.478910][ T8666] kworker/u8:36: attempt to access beyond end of device
[  315.478910][ T8666] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  315.564380][ T8666] CPU: 1 UID: 0 PID: 8666 Comm: kworker/u8:36 Not tainted 6.17.0-rc2-syzkaller-00028-gbe48bcf004f9 #0 PREEMPT(full) 
[  315.564416][ T8666] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  315.564432][ T8666] Workqueue: writeback wb_workfn (flush-7:2)
[  315.564469][ T8666] Call Trace:
[  315.564479][ T8666]  <TASK>
[  315.564489][ T8666]  dump_stack_lvl+0x189/0x250
[  315.564520][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.564550][ T8666]  ? __pfx_dump_stack_lvl+0x10/0x10
[  315.564579][ T8666]  ? __pfx_queue_work_on+0x10/0x10
[  315.564602][ T8666]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  315.564635][ T8666]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  315.564674][ T8666]  f2fs_handle_critical_error+0x37c/0x540
[  315.564714][ T8666]  f2fs_write_end_io+0x886/0xb60
[  315.564750][ T8666]  __submit_merged_bio+0x27a/0x6a0
[  315.564788][ T8666]  __submit_merged_write_cond+0x255/0x530
[  315.564825][ T8666]  f2fs_write_data_pages+0x261d/0x3000
[  315.564886][ T8666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  315.564932][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.564959][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.564981][ T8666]  ? ktime_get+0x3e/0x1f0
[  315.565036][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565063][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.565094][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565120][ T8666]  ? trace_pelt_se_tp+0x39/0x130
[  315.565157][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565184][ T8666]  ? __asan_memset+0x22/0x50
[  315.565211][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565238][ T8666]  ? __enqueue_entity+0x283/0x5e0
[  315.565275][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565302][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565343][ T8666]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  315.565381][ T8666]  do_writepages+0x32e/0x550
[  315.565419][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565453][ T8666]  __writeback_single_inode+0x145/0xff0
[  315.565485][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565511][ T8666]  ? do_raw_spin_unlock+0x122/0x240
[  315.565545][ T8666]  writeback_sb_inodes+0x6c7/0x1010
[  315.565581][ T8666]  ? __switch_to+0xdae/0x1670
[  315.565627][ T8666]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  315.565688][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565715][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.565738][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565771][ T8666]  wb_writeback+0x43b/0xaf0
[  315.565806][ T8666]  ? queue_io+0x3d1/0x590
[  315.565838][ T8666]  ? __pfx_wb_writeback+0x10/0x10
[  315.565874][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.565901][ T8666]  wb_workfn+0x409/0xef0
[  315.565936][ T8666]  ? __pfx_wb_workfn+0x10/0x10
[  315.565960][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.565986][ T8666]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  315.566018][ T8666]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  315.566050][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566075][ T8666]  ? do_raw_spin_unlock+0x122/0x240
[  315.566114][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566140][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.566163][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566189][ T8666]  ? lock_acquire+0x5f/0x360
[  315.566223][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566252][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.566273][ T8666]  ? process_scheduled_works+0x9ef/0x17b0
[  315.566295][ T8666]  ? process_scheduled_works+0x9ef/0x17b0
[  315.566318][ T8666]  process_scheduled_works+0xae1/0x17b0
[  315.566362][ T8666]  ? __pfx_process_scheduled_works+0x10/0x10
[  315.566389][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566422][ T8666]  worker_thread+0x8a0/0xda0
[  315.566465][ T8666]  kthread+0x711/0x8a0
[  315.566496][ T8666]  ? __pfx_worker_thread+0x10/0x10
[  315.566517][ T8666]  ? __pfx_kthread+0x10/0x10
[  315.566543][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566572][ T8666]  ? srso_alias_return_thunk+0x5/0xfbef5
[  315.566597][ T8666]  ? rcu_is_watching+0x15/0xb0
[  315.566620][ T8666]  ? __pfx_kthread+0x10/0x10
[  315.566649][ T8666]  ret_from_fork+0x3fc/0x770
[  315.566675][ T8666]  ? __pfx_ret_from_fork+0x10/0x10
[  315.566704][ T8666]  ? __switch_to_asm+0x39/0x70
[  315.566735][ T8666]  ? __switch_to_asm+0x33/0x70
[  315.566765][ T8666]  ? __pfx_kthread+0x10/0x10
[  315.566794][ T8666]  ret_from_fork_asm+0x1a/0x30
[  315.566836][ T8666]  </TASK>
[  315.989151][ T8666] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  316.615657][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  316.621988][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  316.860617][ T9453] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  316.952178][ T9458] netlink: 'syz.0.931': attribute type 4 has an invalid length.
[  317.074981][ T9453] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.264439][ T9453] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.306592][ T9483] netlink: 'syz.8.936': attribute type 4 has an invalid length.
[  317.348106][ T9480] netlink: 'syz.8.936': attribute type 4 has an invalid length.
[  317.389740][ T9453] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  317.635904][ T9497] __nla_validate_parse: 4 callbacks suppressed
[  317.635926][ T9497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.941'.
[  317.692970][ T1099] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  317.752577][ T1099] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  317.761164][ T1099] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  317.825169][ T1099] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  318.471041][ T9520] netlink: 'syz.7.948': attribute type 83 has an invalid length.
[  318.661719][ T9532] netlink: 'syz.2.952': attribute type 1 has an invalid length.
[  318.710905][ T9535] netlink: 12 bytes leftover after parsing attributes in process `syz.7.954'.
[  319.020997][ T9546] loop2: detected capacity change from 0 to 1024
[  319.085778][ T9546] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  319.242593][ T9546] ext4 filesystem being mounted at /187/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  319.432488][    T9] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  319.772410][    T9] usb 1-1: Using ep0 maxpacket: 16
[  319.916992][    T9] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  320.029787][    T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  320.196155][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  320.368863][    T9] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  320.378873][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  320.387813][    T9] usb 1-1: Product: syz
[  320.394982][    T9] usb 1-1: Manufacturer: syz
[  320.399744][    T9] usb 1-1: SerialNumber: syz
[  320.917639][    T9] usb 1-1: 0:2 : does not exist
[  320.962950][ T5866] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.150391][ T9601] netlink: 68 bytes leftover after parsing attributes in process `syz.8.964'.
[  321.198304][    T9] usb 1-1: 1:0: cannot get min/max values for control 4 (id 1)
[  321.262054][    T9] usb 1-1: USB disconnect, device number 5
[  321.352245][ T9612] netlink: 8 bytes leftover after parsing attributes in process `syz.2.963'.
[  321.363782][ T6858] udevd[6858]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  321.449476][ T9609] netlink: 28 bytes leftover after parsing attributes in process `syz.2.963'.
[  322.842498][ T5991] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  323.052531][ T5991] usb 1-1: Using ep0 maxpacket: 8
[  323.126005][ T5991] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  323.153387][ T9646] netlink: 'syz.2.975': attribute type 4 has an invalid length.
[  323.157984][ T5991] usb 1-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  323.198258][ T5991] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  323.265848][ T5991] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  323.440752][ T5991] usb 1-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  323.490487][ T5991] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  323.526369][ T5991] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.628440][ T5991] usbtmc 1-1:16.0: bulk endpoints not found
[  323.630528][ T9662] netlink: 68 bytes leftover after parsing attributes in process `syz.7.980'.
[  323.940039][ T9673] netlink: 12 bytes leftover after parsing attributes in process `syz.6.983'.
[  323.977986][ T9679] random: crng reseeded on system resumption
[  324.252454][ T6005] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  324.694157][ T6005] usb 8-1: Using ep0 maxpacket: 16
[  325.352472][ T6005] usb 8-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  325.361198][ T6005] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  325.399247][ T9693] netlink: 12 bytes leftover after parsing attributes in process `syz.2.990'.
[  325.462261][ T6005] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  325.635411][ T6005] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  325.644837][ T6005] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.671739][ T6005] usb 8-1: Product: syz
[  325.676219][ T6005] usb 8-1: Manufacturer: syz
[  325.689477][ T6005] usb 8-1: SerialNumber: syz
[  326.128988][ T6005] usb 8-1: 0:2 : does not exist
[  326.338211][ T6005] usb 8-1: 1:0: cannot get min/max values for control 4 (id 1)
[  326.379438][ T9744] fuse: Bad value for 'rootmode'
[  327.172663][ T6005] usb 8-1: USB disconnect, device number 2
[  327.300773][ T6858] udevd[6858]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  327.538390][ T6005] usb 1-1: USB disconnect, device number 6
[  328.410386][ T9774] netlink: 'syz.5.1015': attribute type 4 has an invalid length.
[  328.419944][ T9776] netlink: 'syz.7.1016': attribute type 1 has an invalid length.
[  328.469085][ T9774] netlink: 'syz.5.1015': attribute type 4 has an invalid length.
[  328.494716][ T9776] 8021q: adding VLAN 0 to HW filter on device bond1
[  328.555077][ T9776] bond1: (slave dummy0): making interface the new active one
[  328.564959][ T9776] bond1: (slave dummy0): Enslaving as an active interface with an up link
[  329.458020][ T9820] netlink: 'syz.6.1033': attribute type 4 has an invalid length.
[  329.542904][ T9819] netlink: 'syz.6.1033': attribute type 4 has an invalid length.
[  331.057002][   T30] audit: type=1326 audit(1755574804.020:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.151270][ T9864] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1053'.
[  331.162839][   T30] audit: type=1326 audit(1755574804.020:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.185082][    C1] vkms_vblank_simulate: vblank timer overrun
[  331.219507][   T30] audit: type=1326 audit(1755574804.050:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.253598][ T9864] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1053'.
[  331.273848][   T30] audit: type=1326 audit(1755574804.050:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.318760][   T30] audit: type=1326 audit(1755574804.050:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.366417][   T30] audit: type=1326 audit(1755574804.050:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.517325][   T30] audit: type=1326 audit(1755574804.050:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.612894][   T30] audit: type=1326 audit(1755574804.050:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.706886][   T30] audit: type=1326 audit(1755574804.050:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.749460][ T9886] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1062'.
[  331.808695][   T30] audit: type=1326 audit(1755574804.050:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9859 comm="syz.6.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  331.873615][ T9890] loop5: detected capacity change from 0 to 1024
[  331.903614][ T9890] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  331.929361][ T9893] netlink: 332 bytes leftover after parsing attributes in process `syz.0.1066'.
[  331.947011][ T9890] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  331.973500][ T9890] JBD2: no valid journal superblock found
[  331.979373][ T9890] EXT4-fs (loop5): Could not load journal inode
[  332.829361][ T9914] loop7: detected capacity change from 0 to 128
[  332.840505][ T9913] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1072'.
[  332.849802][ T9913] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  332.859554][ T9913] batman_adv: batadv0: Removing interface: batadv_slave_0
[  332.873239][ T9913] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  332.880626][ T9913] batman_adv: batadv0: Removing interface: batadv_slave_1
[  332.989839][ T9918] netlink: 'syz.5.1076': attribute type 4 has an invalid length.
[  333.041718][ T9919] netlink: 'syz.5.1076': attribute type 4 has an invalid length.
[  333.164282][ T9921] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1078'.
[  333.920280][ T9952] rdma_op ffff888045f491f0 conn xmit_rdma 0000000000000000
[  335.239517][ T9972] netlink: 60 bytes leftover after parsing attributes in process `syz.7.1089'.
[  335.590172][ T9984] netlink: 'syz.5.1095': attribute type 4 has an invalid length.
[  335.641898][ T9987] netlink: 'syz.5.1095': attribute type 4 has an invalid length.
[  335.814419][ T9991] netlink: 'syz.5.1097': attribute type 4 has an invalid length.
[  336.064222][   T30] kauditd_printk_skb: 36 callbacks suppressed
[  336.064243][   T30] audit: type=1326 audit(1755574809.020:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10008 comm="syz.2.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  336.094534][T10011] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1106'.
[  336.156772][   T30] audit: type=1326 audit(1755574809.060:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10008 comm="syz.2.1105" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  336.481065][T10024] loop6: detected capacity change from 0 to 512
[  336.493930][T10024] EXT4-fs: Ignoring removed orlov option
[  336.789527][T10024] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  336.798118][T10024] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  338.127644][T10032] loop7: detected capacity change from 0 to 128
[  338.244290][   T30] audit: type=1326 audit(1755574811.210:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.370954][   T30] audit: type=1326 audit(1755574811.240:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.452259][   T30] audit: type=1326 audit(1755574811.240:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.677245][   T30] audit: type=1326 audit(1755574811.240:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.703071][   T30] audit: type=1326 audit(1755574811.260:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.808372][   T30] audit: type=1326 audit(1755574811.260:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.833404][   T30] audit: type=1326 audit(1755574811.260:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  338.891002][   T30] audit: type=1326 audit(1755574811.260:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10035 comm="syz.6.1116" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  339.313391][T10058] capability: warning: `syz.6.1116' uses 32-bit capabilities (legacy support in use)
[  339.321829][T10072] rdma_op ffff8880290061f0 conn xmit_rdma 0000000000000000
[  339.862392][   T43] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  340.544184][   T43] usb 1-1: Using ep0 maxpacket: 8
[  340.564864][   T43] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[  340.619155][   T43] usb 1-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  340.805487][   T43] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  340.834836][   T43] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  340.962400][   T43] usb 1-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  340.990313][T10100] loop2: detected capacity change from 0 to 1024
[  341.002421][   T43] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  341.042369][   T43] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  341.093763][   T43] usbtmc 1-1:16.0: bulk endpoints not found
[  341.142555][T10100] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  341.212479][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  341.212499][   T30] audit: type=1800 audit(1755574814.170:241): pid=10100 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1140" name="bus" dev="loop2" ino=18 res=0 errno=0
[  341.246126][T10103] loop7: detected capacity change from 0 to 1024
[  341.320673][T10103] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  341.368427][T10100] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  341.376129][T10110] loop5: detected capacity change from 0 to 128
[  341.385803][   T30] audit: type=1800 audit(1755574814.350:242): pid=10103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1141" name="file1" dev="loop7" ino=15 res=0 errno=0
[  341.462305][   T30] audit: type=1800 audit(1755574814.420:243): pid=10110 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1143" name="bus" dev="loop5" ino=1048727 res=0 errno=0
[  341.653413][   T30] audit: type=1326 audit(1755574814.620:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  341.721363][ T5866] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  341.853698][   T30] audit: type=1326 audit(1755574814.640:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  341.886565][T10103] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4183: comm syz.7.1141: Allocating blocks 497-513 which overlap fs metadata
[  341.911750][   T30] audit: type=1326 audit(1755574814.700:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  341.973724][T10103] EXT4-fs (loop7): pa ffff88802fe8cd98: logic 32, phys. 161, len 22
[  341.981720][T10103] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  341.995877][   T30] audit: type=1326 audit(1755574814.700:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  342.047618][   T30] audit: type=1326 audit(1755574814.700:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  342.113597][T10117] rdma_op ffff888028e361f0 conn xmit_rdma 0000000000000000
[  342.162161][   T30] audit: type=1326 audit(1755574814.700:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  342.200438][ T7801] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.269211][   T30] audit: type=1326 audit(1755574814.710:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10113 comm="syz.5.1144" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  342.631153][T10136] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1152'.
[  342.781321][T10139] loop7: detected capacity change from 0 to 512
[  342.869262][T10139] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  342.875758][T10146] loop5: detected capacity change from 0 to 512
[  342.955823][T10139] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  343.261890][T10146] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.295256][T10146] ext4 filesystem being mounted at /207/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  343.315257][T10139] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1153'.
[  343.400379][T10139] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1153'.
[  343.429361][T10146] EXT4-fs (loop5): shut down requested (0)
[  343.524740][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.552549][T10139] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1153'.
[  343.632783][T10139] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1153'.
[  344.071561][ T7801] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  345.106780][T10174] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.289565][T10174] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.394697][T10174] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.694142][T10174] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  345.714988][ T5991] usb 1-1: USB disconnect, device number 7
[  345.805437][ T9745] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  345.969373][ T9739] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  345.990879][ T8482] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  346.015579][ T1336] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  346.024338][T10201] loop5: detected capacity change from 0 to 512
[  346.063382][T10201] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  346.210496][T10201] EXT4-fs (loop5): 1 truncate cleaned up
[  346.251308][T10201] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  346.540399][T10201] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.930621][T10231] loop5: detected capacity change from 0 to 1024
[  346.964287][T10231] EXT4-fs: Ignoring removed bh option
[  347.162249][T10231] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  347.202512][T10231] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1184: Allocating blocks 385-513 which overlap fs metadata
[  347.674907][T10231] EXT4-fs (loop5): pa ffff88802fe8c910: logic 16, phys. 129, len 24
[  347.683124][T10231] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  348.102488][ T5989] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  349.252780][   T51] Bluetooth: hci1: command 0x0406 tx timeout
[  353.079339][ T5989] usb 6-1: Using ep0 maxpacket: 8
[  355.174553][ T5989] usb 6-1: device descriptor read/all, error -71
[  355.342052][T10273] binder: 10268:10273 ioctl 4018620d 0 returned -22
[  355.356571][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.204526][T10284] loop6: detected capacity change from 0 to 128
[  356.406942][T10286] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  356.871184][T10306] loop6: detected capacity change from 0 to 512
[  356.884645][T10306] EXT4-fs: Ignoring removed orlov option
[  356.972248][T10306] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  356.980855][T10306] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  357.974182][T10286] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.247499][T10286] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.269869][T10315] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1216'.
[  358.487510][T10319] netlink: 3 bytes leftover after parsing attributes in process `syz.2.1217'.
[  358.506205][T10286] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  358.657469][T10325] binder: 10320:10325 ioctl 4018620d 0 returned -22
[  358.987287][T10319] batadv1: entered promiscuous mode
[  359.058623][T10319] batadv1: entered allmulticast mode
[  359.303973][T10329] loop6: detected capacity change from 0 to 128
[  359.497926][ T9745] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  359.542547][ T9745] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  359.606747][ T9745] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  359.642437][ T9745] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  359.997941][T10353] loop6: detected capacity change from 0 to 1024
[  360.020799][T10353] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  360.037982][T10355] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.057221][T10353] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  360.067729][T10353] EXT4-fs (loop6): orphan cleanup on readonly fs
[  360.149166][T10353] __quota_error: 4 callbacks suppressed
[  360.149192][T10353] Quota error (device loop6): v2_read_file_info: Can't read info structure
[  360.197553][T10353] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix.
[  360.202479][T10362] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1235'.
[  360.232685][T10353] EXT4-fs (loop6): Cannot turn on quotas: error -5
[  360.240236][T10355] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.244365][T10353] EXT4-fs (loop6): 1 truncate cleaned up
[  360.673270][T10353] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  360.715067][T10355] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.789479][ T7080] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  360.806916][T10355] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.000373][T10371] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1240'.
[  361.111315][   T59] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  361.184506][   T59] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  361.218308][   T59] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  361.237584][   T59] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  361.265476][T10383] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1244'.
[  361.446577][T10391] netlink: 'syz.2.1249': attribute type 1 has an invalid length.
[  361.455571][T10391] netlink: 'syz.2.1249': attribute type 3 has an invalid length.
[  361.513840][T10399] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1247'.
[  361.563423][   T51] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  361.570715][   T51] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  361.578211][   T51] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  361.588420][   T51] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  361.595889][   T51] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  361.868690][ T9737] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  361.894580][T10419] loop5: detected capacity change from 0 to 512
[  361.996756][T10421] loop7: detected capacity change from 0 to 512
[  362.038630][T10421] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  362.049655][T10419] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.062508][T10421] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[  362.079567][T10419] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.095463][T10421] EXT4-fs (loop7): 1 truncate cleaned up
[  362.117854][T10421] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.145199][ T9737] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.166148][T10419] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  362.179988][T10421] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  362.196559][T10430] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  362.231180][ T9737] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.317942][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.387334][T10433] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1257'.
[  362.471696][ T9737] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  362.956934][T10400] chnl_net:caif_netlink_parms(): no params data found
[  363.143389][ T7801] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.523397][T10465] loop7: detected capacity change from 0 to 1024
[  363.530833][T10465] EXT4-fs: Ignoring removed bh option
[  363.571919][T10465] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  363.642802][ T9737] bridge_slave_1: left allmulticast mode
[  363.648480][ T9737] bridge_slave_1: left promiscuous mode
[  363.676307][ T9737] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.732526][   T51] Bluetooth: hci6: command tx timeout
[  363.787957][ T9737] bridge_slave_0: left allmulticast mode
[  363.809429][ T9737] bridge_slave_0: left promiscuous mode
[  363.820718][ T7801] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.829861][ T9737] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.463729][ T9737] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  364.488800][ T9737] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  364.514979][ T9737] bond0 (unregistering): Released all slaves
[  364.571111][T10473] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.589567][T10485] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1265'.
[  364.600022][T10400] bridge0: port 1(bridge_slave_0) entered blocking state
[  364.607353][T10400] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.649579][T10400] bridge_slave_0: entered allmulticast mode
[  364.658078][T10400] bridge_slave_0: entered promiscuous mode
[  364.689613][T10400] bridge0: port 2(bridge_slave_1) entered blocking state
[  364.717636][T10400] bridge0: port 2(bridge_slave_1) entered disabled state
[  364.731523][T10400] bridge_slave_1: entered allmulticast mode
[  364.743994][T10400] bridge_slave_1: entered promiscuous mode
[  364.750562][ T9737] tipc: Left network mode
[  364.769198][T10473] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.899610][T10473] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.052500][T10510] loop5: detected capacity change from 0 to 512
[  365.066150][T10510] EXT4-fs: Ignoring removed orlov option
[  365.102089][T10510] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  365.110910][T10510] EXT4-fs (loop5): blocks per group (95) and clusters per group (32768) inconsistent
[  365.812528][   T51] Bluetooth: hci6: command tx timeout
[  366.237695][T10400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.310508][T10400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.452002][T10473] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  366.638994][   T30] audit: type=1800 audit(1755574839.600:254): pid=10520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1278" name="/" dev="9p" ino=2 res=0 errno=0
[  366.783510][ T9737] hsr_slave_0: left promiscuous mode
[  366.813390][ T9737] hsr_slave_1: left promiscuous mode
[  366.832798][ T9737] veth1_macvtap: left promiscuous mode
[  366.850257][ T9737] veth0_macvtap: left promiscuous mode
[  366.865907][ T9737] veth1_vlan: left promiscuous mode
[  366.882340][ T9737] veth0_vlan: left promiscuous mode
[  366.924226][T10530] loop5: detected capacity change from 0 to 8192
[  367.391878][ T9737] team0 (unregistering): Port device team_slave_1 removed
[  367.429066][ T9737] team0 (unregistering): Port device team_slave_0 removed
[  367.459567][T10534] loop7: detected capacity change from 0 to 32768
[  367.474376][T10534] XFS: ikeep mount option is deprecated.
[  367.503371][T10534] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  367.594426][T10534] XFS (loop7): Ending clean mount
[  367.614149][T10534] XFS (loop7): Quotacheck needed: Please wait.
[  367.661344][T10534] XFS (loop7): Quotacheck: Done.
[  367.765711][T10400] team0: Port device team_slave_0 added
[  367.780869][T10553] netlink: 60 bytes leftover after parsing attributes in process `syz.2.1287'.
[  367.807486][T10400] team0: Port device team_slave_1 added
[  367.870568][ T9745] netdevsim netdevsim6 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  367.893371][   T51] Bluetooth: hci6: command tx timeout
[  367.988578][T10400] batman_adv: batadv0: Adding interface: batadv_slave_0
[  368.005672][T10400] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.037559][T10400] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  368.071410][T10400] batman_adv: batadv0: Adding interface: batadv_slave_1
[  368.089900][T10400] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.114842][T10587] loop8: detected capacity change from 0 to 512
[  368.133744][T10587] EXT4-fs: Ignoring removed bh option
[  368.176000][T10587] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  368.197779][T10400] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  368.226977][T10587] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  368.251781][ T9745] netdevsim netdevsim6 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  368.265740][T10587] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended
[  368.304825][T10587] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[  368.378073][T10587] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  368.495106][   T59] netdevsim netdevsim6 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  368.537784][T10400] hsr_slave_0: entered promiscuous mode
[  368.555711][T10400] hsr_slave_1: entered promiscuous mode
[  368.561856][T10400] debugfs: 'hsr0' already exists in 'hsr'
[  368.579887][ T8830] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.604586][T10400] Cannot create hsr debugfs directory
[  368.612099][ T9745] netdevsim netdevsim6 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  369.580727][T10621] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1302'.
[  369.904431][T10653] loop2: detected capacity change from 0 to 512
[  369.923176][T10649] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1303'.
[  370.008817][   T51] Bluetooth: hci6: command tx timeout
[  370.078910][T10653] EXT4-fs: Ignoring removed orlov option
[  370.119637][T10653] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  370.177877][T10655] loop8: detected capacity change from 0 to 736
[  370.238937][T10655] iso9660: Unknown parameter 'showau¼ú:Akoc'
[  370.282284][T10653] ext4 filesystem being mounted at /256/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  370.313406][T10654] loop6: detected capacity change from 0 to 512
[  370.395630][T10654] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  370.440131][T10654] EXT4-fs (loop6): orphan cleanup on readonly fs
[  370.461162][T10654] Quota error (device loop6): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  370.485416][T10668] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1307'.
[  370.511421][T10654] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  370.556003][T10654] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  370.593424][T10654] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1305: bg 0: block 40: padding at end of block bitmap is not set
[  370.628867][ T5866] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.642196][T10654] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  370.655334][T10654] EXT4-fs (loop6): 1 truncate cleaned up
[  370.663438][T10654] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  370.728884][ T7801] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  370.825010][ T7080] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.989798][T10400] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  371.055229][T10400] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  371.090442][T10683] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1315'.
[  371.138808][T10400] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  371.174956][T10400] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  371.246531][T10695] netlink: 'syz.8.1317': attribute type 4 has an invalid length.
[  371.298188][T10702] netlink: 'syz.8.1317': attribute type 4 has an invalid length.
[  371.517308][T10400] 8021q: adding VLAN 0 to HW filter on device bond0
[  371.573578][T10400] 8021q: adding VLAN 0 to HW filter on device team0
[  372.011523][ T8665] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.018709][ T8665] bridge0: port 1(bridge_slave_0) entered forwarding state
[  372.103964][ T7008] bridge0: port 2(bridge_slave_1) entered blocking state
[  372.111134][ T7008] bridge0: port 2(bridge_slave_1) entered forwarding state
[  372.421216][T10727] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1324'.
[  372.577325][T10734] loop8: detected capacity change from 0 to 512
[  372.716874][T10740] binder: 10736:10740 ioctl 4018620d 0 returned -22
[  373.422752][T10734] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.506093][T10745] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1329'.
[  373.766322][ T8830] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  373.793734][T10756] netlink: 'syz.7.1332': attribute type 4 has an invalid length.
[  373.869874][T10718] loop6: detected capacity change from 0 to 32768
[  373.901837][T10756] netlink: 'syz.7.1332': attribute type 4 has an invalid length.
[  373.921284][T10718] XFS: ikeep mount option is deprecated.
[  374.019608][T10400] 8021q: adding VLAN 0 to HW filter on device batadv0
[  374.060262][T10718] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  374.334306][T10718] XFS (loop6): Ending clean mount
[  374.359183][T10718] XFS (loop6): Quotacheck needed: Please wait.
[  374.386511][T10718] XFS (loop6): Quotacheck: Done.
[  374.473331][T10788] loop5: detected capacity change from 0 to 512
[  374.481172][T10788] EXT4-fs: Ignoring removed orlov option
[  377.963001][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  377.969397][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  381.482011][T10788] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  381.490547][T10788] EXT4-fs (loop5): blocks per group (95) and clusters per group (32768) inconsistent
[  381.672382][ T7080] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  381.858986][T10805] fuse: Unknown parameter 'fd0x0000000000000006'
[  382.669790][T10810] loop5: detected capacity change from 0 to 512
[  382.836720][T10810] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  382.894244][T10810] ext4 filesystem being mounted at /246/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  382.944277][T10400] veth0_vlan: entered promiscuous mode
[  382.968425][T10400] veth1_vlan: entered promiscuous mode
[  383.136113][T10827] loop6: detected capacity change from 0 to 512
[  383.149729][T10827] EXT4-fs: Ignoring removed orlov option
[  383.578073][T10827] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  383.586702][T10827] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  384.341600][T10400] veth0_macvtap: entered promiscuous mode
[  384.473359][T10400] veth1_macvtap: entered promiscuous mode
[  384.623819][T10820] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  384.710217][T10400] batman_adv: batadv0: Interface activated: batadv_slave_0
[  384.800080][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  384.821290][T10840] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1350'.
[  384.832073][T10845] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1352'.
[  384.996737][   T30] audit: type=1326 audit(1755574857.920:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10839 comm="syz.7.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  385.086145][   T30] audit: type=1326 audit(1755574857.920:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10839 comm="syz.7.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa7de58d550 code=0x7ffc0000
[  385.122996][T10857] loop2: detected capacity change from 0 to 512
[  385.136670][T10857] EXT4-fs: Ignoring removed orlov option
[  385.156117][T10857] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  385.165267][T10857] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[  385.392510][   T30] audit: type=1326 audit(1755574857.920:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10839 comm="syz.7.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  385.702991][   T30] audit: type=1326 audit(1755574857.960:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10839 comm="syz.7.1350" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  386.243877][T10869] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1358'.
[  387.443463][T10877] loop2: detected capacity change from 0 to 32768
[  387.450696][T10877] XFS: ikeep mount option is deprecated.
[  387.468937][T10400] batman_adv: batadv0: Interface activated: batadv_slave_1
[  387.570303][T10858] netlink: 'syz.6.1354': attribute type 4 has an invalid length.
[  387.641881][T10877] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  387.755544][ T8667] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  387.781749][T10877] XFS (loop2): Ending clean mount
[  387.793758][T10877] XFS (loop2): Quotacheck needed: Please wait.
[  387.803864][ T7008] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  387.852620][T10877] XFS (loop2): Quotacheck: Done.
[  387.862011][ T7008] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  388.000837][ T9736] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  389.246018][ T5866] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  389.277128][ T9736] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.302561][ T9736] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  389.399047][T10914] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  389.424125][ T8667] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  389.451329][ T8667] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  389.578329][T10919] loop5: detected capacity change from 0 to 1024
[  389.666694][T10919] EXT4-fs: Ignoring removed bh option
[  389.731236][T10923] netlink: 60 bytes leftover after parsing attributes in process `syz.6.1374'.
[  389.781202][T10919] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.283500][T10931] netlink: 68 bytes leftover after parsing attributes in process `syz.2.1368'.
[  390.288521][T10919] EXT4-fs error (device loop5): ext4_mb_mark_diskspace_used:4183: comm syz.5.1372: Allocating blocks 385-513 which overlap fs metadata
[  390.347275][T10919] EXT4-fs (loop5): pa ffff88805af8e828: logic 16, phys. 129, len 24
[  390.355393][T10919] EXT4-fs error (device loop5): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 8
[  390.418001][T10935] netlink: 'syz.9.1375': attribute type 4 has an invalid length.
[  390.495692][T10939] netlink: 'syz.9.1375': attribute type 4 has an invalid length.
[  390.742420][ T5940] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  391.774246][ T5940] usb 6-1: Using ep0 maxpacket: 8
[  391.802795][ T5940] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  391.835351][ T5940] usb 6-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  391.868968][ T5940] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  391.917923][ T5940] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  391.968662][ T5940] usb 6-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  392.031026][ T5940] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  392.087410][ T5940] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.106761][T10962] netlink: 300 bytes leftover after parsing attributes in process `syz.2.1383'.
[  392.124873][ T5940] usbtmc 6-1:16.0: bulk endpoints not found
[  392.227685][T10965] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1383'.
[  392.279227][T10969] IPv6: NLM_F_CREATE should be specified when creating new route
[  392.365925][   T43] usb 6-1: USB disconnect, device number 8
[  392.412145][   T30] audit: type=1326 audit(1755574865.370:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.494965][   T30] audit: type=1326 audit(1755574865.370:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.575254][   T30] audit: type=1326 audit(1755574865.370:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.591321][T10979] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1387'.
[  392.644731][   T30] audit: type=1326 audit(1755574865.370:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.669605][T10981] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1388'.
[  392.700792][   T30] audit: type=1326 audit(1755574865.370:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.732659][   T30] audit: type=1326 audit(1755574865.370:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.791610][   T30] audit: type=1326 audit(1755574865.370:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.827915][   T30] audit: type=1326 audit(1755574865.370:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.879472][   T30] audit: type=1326 audit(1755574865.370:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  392.936642][   T30] audit: type=1326 audit(1755574865.370:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.9.1386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  393.008903][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  393.265261][T10996] loop2: detected capacity change from 0 to 512
[  393.293163][T10996] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  393.301587][T10996] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #13: comm syz.2.1392: invalid indirect mapped block 2683928664 (level 1)
[  393.459207][T11005] fuse: Unknown parameter 'fd0x0000000000000003'
[  393.481374][T10996] EXT4-fs (loop2): 1 truncate cleaned up
[  393.558078][T10996] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  393.567205][T11010] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1396'.
[  393.739061][T10996] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1392: Invalid block bitmap block 3 in block_group 0
[  393.812050][T10996] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1392: Invalid block bitmap block 3 in block_group 0
[  393.828105][ T5854] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  393.896668][T10996] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.1392: Invalid block bitmap block 3 in block_group 0
[  394.004089][ T5854] usb 9-1: Using ep0 maxpacket: 16
[  394.027923][ T5854] usb 9-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  394.050448][ T5866] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.072540][ T5854] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  394.100787][ T5854] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[  394.141310][ T5854] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  394.166094][T11045] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1406'.
[  394.179068][ T5854] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  394.183760][T11044] loop7: detected capacity change from 0 to 512
[  394.212144][ T5854] usb 9-1: Product: syz
[  394.222600][ T5854] usb 9-1: Manufacturer: syz
[  394.237396][ T5854] usb 9-1: SerialNumber: syz
[  394.282485][T11050] netlink: 300 bytes leftover after parsing attributes in process `syz.2.1405'.
[  394.568546][T11044] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  394.885849][ T5854] usb 9-1: 0:2 : does not exist
[  395.008086][T11044] EXT4-fs (loop7): orphan cleanup on readonly fs
[  395.014885][T11068] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1405'.
[  395.283095][T11044] EXT4-fs warning (device loop7): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  395.350694][T11084] fuse: Unknown parameter 'fd0x0000000000000003'
[  395.398732][T11044] EXT4-fs (loop7): Cannot turn on quotas: error -117
[  395.426221][T11044] EXT4-fs error (device loop7): ext4_validate_block_bitmap:441: comm syz.7.1404: bg 0: block 40: padding at end of block bitmap is not set
[  395.454716][T11044] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  395.469596][T11044] EXT4-fs (loop7): 1 truncate cleaned up
[  395.487011][T11086] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1410'.
[  395.521125][T11044] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  395.622451][ T5854] usb 9-1: 1:0: cannot get min/max values for control 4 (id 1)
[  395.631707][T11089] loop6: detected capacity change from 0 to 736
[  395.652206][T11089] iso9660: Unknown parameter 'showau¼ú:Akoc'
[  395.674530][ T7801] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  395.694661][ T5854] usb 9-1: USB disconnect, device number 2
[  395.810135][ T6858] udevd[6858]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  396.712236][T11140] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1425'.
[  397.429070][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  397.429091][   T30] audit: type=1326 audit(1755574870.370:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11153 comm="syz.7.1431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  397.508560][T11177] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1434'.
[  397.591015][T11181] loop8: detected capacity change from 0 to 512
[  397.646427][T11181] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  397.700820][T11181] EXT4-fs (loop8): orphan cleanup on readonly fs
[  397.728666][T11181] Quota error (device loop8): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  397.777156][T11181] EXT4-fs warning (device loop8): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  397.823892][T11181] EXT4-fs (loop8): Cannot turn on quotas: error -117
[  397.849700][T11194] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1440'.
[  397.872810][T11181] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.1436: bg 0: block 40: padding at end of block bitmap is not set
[  397.922374][T11181] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  397.973382][T11181] EXT4-fs (loop8): 1 truncate cleaned up
[  398.010904][T11181] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  398.106732][ T8830] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.283355][T11213] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  398.495210][T11219] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.731952][T11219] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.861116][T11219] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  398.886079][T11227] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1452'.
[  399.039972][T11219] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.132322][T11217] loop6: detected capacity change from 0 to 131072
[  399.140337][T11217] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  399.148488][T11217] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  399.159779][T11217] F2FS-fs (loop6): invalid crc value
[  399.222925][T11217] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  399.245312][T11217] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  399.252460][T11217] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  399.389150][ T8653] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  399.480700][ T9745] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  399.545543][ T9745] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.593661][ T9745] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  399.782989][T11250] loop5: detected capacity change from 0 to 128
[  399.852356][T11255] netlink: 300 bytes leftover after parsing attributes in process `syz.8.1459'.
[  399.949644][T11259] syz.5.1458: attempt to access beyond end of device
[  399.949644][T11259] loop5: rw=2049, sector=145, nr_sectors = 16 limit=128
[  400.017867][T11258] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1459'.
[  400.026886][T11259] syz.5.1458: attempt to access beyond end of device
[  400.026886][T11259] loop5: rw=2049, sector=169, nr_sectors = 8 limit=128
[  400.092670][T11259] syz.5.1458: attempt to access beyond end of device
[  400.092670][T11259] loop5: rw=2049, sector=185, nr_sectors = 8 limit=128
[  400.162628][T11259] syz.5.1458: attempt to access beyond end of device
[  400.162628][T11259] loop5: rw=2049, sector=201, nr_sectors = 8 limit=128
[  400.299283][T11259] syz.5.1458: attempt to access beyond end of device
[  400.299283][T11259] loop5: rw=2049, sector=217, nr_sectors = 8 limit=128
[  400.366526][T11265] syz.6.1462 (11265) used greatest stack depth: 17992 bytes left
[  400.402073][T11259] syz.5.1458: attempt to access beyond end of device
[  400.402073][T11259] loop5: rw=2049, sector=233, nr_sectors = 8 limit=128
[  400.928356][T11276] wireguard0: entered promiscuous mode
[  400.934052][T11259] syz.5.1458: attempt to access beyond end of device
[  400.934052][T11259] loop5: rw=2049, sector=249, nr_sectors = 8 limit=128
[  400.934167][T11259] syz.5.1458: attempt to access beyond end of device
[  400.934167][T11259] loop5: rw=2049, sector=265, nr_sectors = 8 limit=128
[  400.934259][T11259] syz.5.1458: attempt to access beyond end of device
[  400.934259][T11259] loop5: rw=2049, sector=281, nr_sectors = 8 limit=128
[  400.934347][T11259] syz.5.1458: attempt to access beyond end of device
[  400.934347][T11259] loop5: rw=2049, sector=297, nr_sectors = 8 limit=128
[  400.987443][T11279] openvswitch: netlink: Message has 8 unknown bytes.
[  401.173554][T11276] wireguard0: entered allmulticast mode
[  402.326108][T11303] binder: 11289:11303 ioctl 4018620d 0 returned -22
[  402.856930][T11316] netdevsim netdevsim5 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.861038][T11321] loop7: detected capacity change from 0 to 1024
[  402.948017][T11321] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.082910][T11316] netdevsim netdevsim5 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.138807][   T30] audit: type=1800 audit(1755574876.100:299): pid=11321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1477" name="bus" dev="loop7" ino=18 res=0 errno=0
[  403.182519][T11321] EXT4-fs error (device loop7): ext4_mb_mark_diskspace_used:4183: comm syz.7.1477: Allocating blocks 497-513 which overlap fs metadata
[  403.243604][T11316] netdevsim netdevsim5 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.658718][T11321] Trying to write to read-only block-device loop7
[  403.696796][T11320] EXT4-fs (loop7): pa ffff88807cf18bc8: logic 80, phys. 209, len 19
[  403.705255][T11320] EXT4-fs error (device loop7): ext4_mb_release_inode_pa:5434: group 0, free 0, pa_free 1
[  403.726694][T11345] netlink: 92 bytes leftover after parsing attributes in process `syz.2.1482'.
[  403.733013][T11316] netdevsim netdevsim5 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.897768][ T7801] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  403.969253][T11351] loop8: detected capacity change from 0 to 512
[  403.991187][T11351] EXT4-fs: Ignoring removed nobh option
[  404.027308][T11354] netlink: 'syz.2.1487': attribute type 4 has an invalid length.
[  404.068553][T11354] netlink: 'syz.2.1487': attribute type 4 has an invalid length.
[  404.069133][T11351] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #3: comm syz.8.1486: corrupted inode contents
[  404.095216][T11351] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #3: comm syz.8.1486: mark_inode_dirty error
[  404.523702][T11351] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #3: comm syz.8.1486: corrupted inode contents
[  404.564579][T11351] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #3: comm syz.8.1486: mark_inode_dirty error
[  404.610633][T11351] Quota error (device loop8): write_blk: dquota write failed
[  404.629819][T11351] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  404.669248][T11351] EXT4-fs error (device loop8): ext4_acquire_dquot:6937: comm syz.8.1486: Failed to acquire dquot type 0
[  404.706131][T11351] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.1486: corrupted inode contents
[  404.711520][ T9736] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  404.753935][T11351] EXT4-fs error (device loop8): ext4_dirty_inode:6538: inode #16: comm syz.8.1486: mark_inode_dirty error
[  404.774455][ T8660] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  404.827022][T11351] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.1486: corrupted inode contents
[  404.854995][ T9736] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  404.869161][T11351] EXT4-fs error (device loop8): __ext4_ext_dirty:206: inode #16: comm syz.8.1486: mark_inode_dirty error
[  404.921968][T11351] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.1486: corrupted inode contents
[  404.947800][ T9736] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  404.981046][T11351] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  405.028535][T11351] EXT4-fs error (device loop8): ext4_do_update_inode:5653: inode #16: comm syz.8.1486: corrupted inode contents
[  405.094625][T11351] EXT4-fs error (device loop8): ext4_truncate:4666: inode #16: comm syz.8.1486: mark_inode_dirty error
[  405.155033][T11351] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  405.164812][   T30] audit: type=1326 audit(1755574878.130:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11379 comm="syz.5.1496" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f114e58ebe9 code=0x0
[  405.191745][T11351] EXT4-fs (loop8): 1 truncate cleaned up
[  405.201276][T11351] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  405.214462][T11351] ext4 filesystem being mounted at /114/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  405.289361][   T30] audit: type=1326 audit(1755574878.250:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11383 comm="syz.7.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  405.311747][    C0] vkms_vblank_simulate: vblank timer overrun
[  405.326405][   T30] audit: type=1326 audit(1755574878.280:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11383 comm="syz.7.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  405.369653][   T30] audit: type=1326 audit(1755574878.320:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11383 comm="syz.7.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  405.393040][   T30] audit: type=1326 audit(1755574878.320:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11383 comm="syz.7.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  405.415943][   T30] audit: type=1326 audit(1755574878.320:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11383 comm="syz.7.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  405.454032][   T30] audit: type=1326 audit(1755574878.320:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11383 comm="syz.7.1497" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  405.548869][ T8830] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.631209][T11393] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1501'.
[  405.659585][T11398] netlink: 68 bytes leftover after parsing attributes in process `syz.7.1504'.
[  405.680336][T11400] netlink: 'syz.8.1502': attribute type 4 has an invalid length.
[  405.704297][T11400] netlink: 'syz.8.1502': attribute type 4 has an invalid length.
[  406.635133][T11422] loop2: detected capacity change from 0 to 736
[  406.932667][T11434] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1519'.
[  407.514786][T11445] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1522'.
[  407.898490][T11458] loop6: detected capacity change from 0 to 512
[  407.910019][T11458] EXT4-fs: Ignoring removed orlov option
[  407.942939][T11458] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  407.951472][T11458] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  408.319498][T11450] macvtap0: refused to change device tx_queue_len
[  409.953245][T11480] binder: 11473:11480 ioctl 4018620d 0 returned -22
[  410.446840][T11482] 9pnet_fd: Insufficient options for proto=fd
[  410.500263][T11486] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1536'.
[  410.655480][T11494] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1538'.
[  410.692704][T11462] Bluetooth: hci3: command 0x0406 tx timeout
[  410.822518][T11502] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1542'.
[  410.959601][T11509] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1546'.
[  411.608447][T11506] loop2: detected capacity change from 0 to 131072
[  411.635050][T11506] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[  411.643288][T11506] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  411.654437][T11506] F2FS-fs (loop2): invalid crc value
[  411.705466][T11506] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  411.715826][T11506] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  411.723184][T11506] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  411.778411][T11506] F2FS-fs (loop2): Stopped filesystem due to reason: 0
[  412.043441][T11526] netlink: 'syz.8.1550': attribute type 4 has an invalid length.
[  412.139520][T11526] netlink: 'syz.8.1550': attribute type 4 has an invalid length.
[  412.301429][T11530] loop5: detected capacity change from 0 to 512
[  412.314939][T11530] EXT4-fs: Ignoring removed orlov option
[  413.162344][T11530] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  413.170962][T11530] EXT4-fs (loop5): blocks per group (95) and clusters per group (32768) inconsistent
[  413.979895][T11534] loop7: detected capacity change from 0 to 1024
[  414.035214][T11534] EXT4-fs: Ignoring removed bh option
[  414.190653][T11536] netlink: 'syz.8.1553': attribute type 4 has an invalid length.
[  414.506704][T11547] macvtap0: refused to change device tx_queue_len
[  414.774822][T11562] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1560'.
[  415.609637][T11566] loop2: detected capacity change from 0 to 131072
[  415.618153][T11566] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[  415.626352][T11566] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  415.638732][T11566] F2FS-fs (loop2): invalid crc value
[  415.706731][T11566] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  415.724624][T11566] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  415.731694][T11566] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  415.763316][T11566] F2FS-fs (loop2): Stopped filesystem due to reason: 0
[  416.119211][T11597] smc: net device bond0 applied user defined pnetid SYZ0
[  416.175799][T11597] smc: net device bond0 erased user defined pnetid SYZ0
[  416.595689][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  416.595712][   T30] audit: type=1326 audit(1755574889.560:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11612 comm="syz.5.1579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  416.624610][    C1] vkms_vblank_simulate: vblank timer overrun
[  417.218052][T11626] ALSA: seq fatal error: cannot create timer (-22)
[  417.279449][T11626] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1586'.
[  417.327705][T11626] openvswitch: netlink: Flow key attr not present in new flow.
[  417.378249][T11626] 9pnet_fd: Insufficient options for proto=fd
[  417.421892][T11617] loop9: detected capacity change from 0 to 131072
[  417.430404][   T30] audit: type=1326 audit(1755574889.600:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11612 comm="syz.5.1579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  417.452826][T11617] F2FS-fs (loop9): Wrong CP boundary, start(512) end(1536) blocks(0)
[  417.460936][T11617] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  417.469401][   T30] audit: type=1326 audit(1755574889.600:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11612 comm="syz.5.1579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  417.492074][    C1] vkms_vblank_simulate: vblank timer overrun
[  417.499745][   T30] audit: type=1326 audit(1755574889.600:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11612 comm="syz.5.1579" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  417.522116][    C1] vkms_vblank_simulate: vblank timer overrun
[  417.534053][T11617] F2FS-fs (loop9): invalid crc value
[  417.598815][T11617] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  417.614014][T11617] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  417.621069][T11617] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4
[  417.658290][T11617] F2FS-fs (loop9): Stopped filesystem due to reason: 0
[  418.531698][T11659] loop8: detected capacity change from 0 to 512
[  418.542444][T11659] EXT4-fs: Ignoring removed orlov option
[  418.555900][T11659] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  418.564461][T11659] EXT4-fs (loop8): blocks per group (95) and clusters per group (32768) inconsistent
[  420.330284][T11668] netlink: 300 bytes leftover after parsing attributes in process `syz.2.1596'.
[  420.858278][T11688] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1597'.
[  420.887067][T11688] loop8: detected capacity change from 0 to 736
[  420.945955][T11688] iso9660: Unknown parameter 'showau¼ú:Akoc'
[  421.587809][T11705] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1605'.
[  421.635874][T11705] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1605'.
[  421.659241][T11705] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1605'.
[  421.871236][T11714] loop6: detected capacity change from 0 to 128
[  421.879523][T11713] loop5: detected capacity change from 0 to 128
[  422.006898][T11720] loop7: detected capacity change from 0 to 512
[  422.020933][T11720] EXT4-fs: Ignoring removed orlov option
[  422.651109][   T30] audit: type=1800 audit(1755574895.590:329): pid=11714 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1609" name="file1" dev="loop6" ino=1048733 res=0 errno=0
[  422.840796][   T30] audit: type=1800 audit(1755574895.650:330): pid=11713 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1608" name="bus" dev="loop5" ino=1048734 res=0 errno=0
[  423.618611][T11741] binder: 11738:11741 ioctl 4018620d 0 returned -22
[  424.335811][   T30] audit: type=1326 audit(1755574897.290:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  424.386501][   T30] audit: type=1326 audit(1755574897.290:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  424.431307][   T30] audit: type=1326 audit(1755574897.330:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  424.462890][   T30] audit: type=1326 audit(1755574897.330:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  424.795607][   T30] audit: type=1326 audit(1755574897.330:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  425.219451][   T30] audit: type=1326 audit(1755574897.330:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  425.298507][   T30] audit: type=1326 audit(1755574897.330:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  425.322015][   T30] audit: type=1326 audit(1755574897.330:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11743 comm="syz.5.1617" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  425.349840][T11752] loop7: detected capacity change from 0 to 512
[  427.701303][T11816] loop7: detected capacity change from 0 to 736
[  429.188703][T11851] smc: net device bond0 applied user defined pnetid SYZ0
[  429.256295][T11852] smc: net device bond0 erased user defined pnetid SYZ0
[  429.297405][T11854] loop2: detected capacity change from 0 to 512
[  429.316054][T11854] ext4: Unknown parameter 'smackfsfloor'
[  429.487036][T11857] loop5: detected capacity change from 0 to 4096
[  429.586926][T11857] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  429.638101][T11868] loop7: detected capacity change from 0 to 1024
[  429.667094][T11868] EXT4-fs (loop7): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  429.726092][T11868] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  429.730736][T11857] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1661: corrupted inode contents
[  429.775099][T11874] netlink: 'syz.5.1661': attribute type 13 has an invalid length.
[  429.805888][T11857] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #15: comm syz.5.1661: mark_inode_dirty error
[  429.827185][T11868] JBD2: no valid journal superblock found
[  429.840300][T11857] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1661: corrupted inode contents
[  429.853816][T11868] EXT4-fs (loop7): Could not load journal inode
[  429.862437][ T6005] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  429.983976][T11857] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #15: comm syz.5.1661: mark_inode_dirty error
[  430.052099][T11857] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1661: corrupted inode contents
[  430.072860][ T6005] usb 7-1: Using ep0 maxpacket: 16
[  430.094056][ T6005] usb 7-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  430.103934][ T6005] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  430.114918][T11857] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #15: comm syz.5.1661: mark_inode_dirty error
[  430.131358][ T6005] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  430.149124][T11857] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #15: comm syz.5.1661: corrupted inode contents
[  430.165802][T11857] EXT4-fs error (device loop5): ext4_truncate:4666: inode #15: comm syz.5.1661: mark_inode_dirty error
[  430.165954][ T6005] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  430.188298][T11857] EXT4-fs error (device loop5) in ext4_setattr:6071: Corrupt filesystem
[  430.197397][ T6005] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  430.225088][ T6005] usb 7-1: Product: syz
[  430.234134][ T6005] usb 7-1: Manufacturer: syz
[  430.243053][T11884] netlink: 'syz.8.1670': attribute type 3 has an invalid length.
[  430.254834][ T6005] usb 7-1: SerialNumber: syz
[  430.296949][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  430.975081][ T6005] usb 7-1: 0:2 : does not exist
[  431.272390][   T30] kauditd_printk_skb: 27 callbacks suppressed
[  431.272412][   T30] audit: type=1326 audit(1755574904.230:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.352352][   T30] audit: type=1326 audit(1755574904.240:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.425868][   T30] audit: type=1326 audit(1755574904.250:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.478914][   T30] audit: type=1326 audit(1755574904.250:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.529825][   T30] audit: type=1326 audit(1755574904.250:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.627639][   T30] audit: type=1326 audit(1755574904.250:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.701051][   T30] audit: type=1326 audit(1755574904.260:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.775227][   T30] audit: type=1326 audit(1755574904.270:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.783502][T11909] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1679'.
[  431.839874][T11909] openvswitch: netlink: Flow key attr not present in new flow.
[  431.876604][ T6005] usb 7-1: 1:0: failed to get current value for ch 0 (-22)
[  431.950997][   T30] audit: type=1326 audit(1755574904.280:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  431.975840][   T30] audit: type=1326 audit(1755574904.280:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11899 comm="syz.9.1676" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbc3f58ebe9 code=0x7ffc0000
[  432.007427][ T6005] usb 7-1: USB disconnect, device number 7
[  432.091821][ T6858] udevd[6858]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  432.130688][T11915] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.241346][T11915] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.332145][T11915] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.403382][T11915] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.576138][ T9737] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  432.684712][ T9737] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  432.721897][ T9737] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  432.743959][ T9737] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  432.770779][T11923] loop6: detected capacity change from 0 to 1024
[  432.818596][T11923] EXT4-fs: Ignoring removed nomblk_io_submit option
[  432.888467][T11923] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  432.977960][T11928] netlink: 'syz.9.1685': attribute type 4 has an invalid length.
[  432.994950][T11928] netlink: 14 bytes leftover after parsing attributes in process `syz.9.1685'.
[  433.108461][ T7080] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.699168][T11943] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1688'.
[  433.797722][T11943] loop7: detected capacity change from 0 to 736
[  433.847551][T11943] iso9660: Unknown parameter 'showau¼ú:Akoc'
[  434.598937][T11949] binder: 11944:11949 ioctl 4018620d 0 returned -22
[  434.849352][T11953] loop7: detected capacity change from 0 to 512
[  434.910939][T11947] macvtap0: refused to change device tx_queue_len
[  436.053996][T11993] loop5: detected capacity change from 0 to 512
[  436.096564][T11993] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  436.099651][T11995] loop6: detected capacity change from 0 to 512
[  436.117190][T11993] EXT4-fs (loop5): orphan cleanup on readonly fs
[  436.168532][T11993] EXT4-fs warning (device loop5): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  436.208821][T11995] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[  436.221642][T11993] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  436.230812][T11995] EXT4-fs error (device loop6): ext4_free_branches:1023: inode #13: comm syz.6.1701: invalid indirect mapped block 2683928664 (level 1)
[  436.285079][T11993] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.1700: bg 0: block 40: padding at end of block bitmap is not set
[  436.329712][T11995] EXT4-fs (loop6): 1 truncate cleaned up
[  436.335519][T11993] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  436.366306][T11995] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.366828][T12003] netlink: 300 bytes leftover after parsing attributes in process `syz.8.1703'.
[  436.392221][T11993] EXT4-fs (loop5): 1 truncate cleaned up
[  436.400434][T11993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  436.403047][T11995] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.1701: Invalid block bitmap block 3 in block_group 0
[  436.449258][T11995] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.1701: Invalid block bitmap block 3 in block_group 0
[  436.478738][T11995] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:483: comm syz.6.1701: Invalid block bitmap block 3 in block_group 0
[  436.543385][ T7080] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.554381][T12007] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1703'.
[  436.691174][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.367291][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  437.367312][   T30] audit: type=1326 audit(1755574910.330:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.396042][    C0] vkms_vblank_simulate: vblank timer overrun
[  437.396045][T12047] loop7: detected capacity change from 0 to 2048
[  437.423096][   T30] audit: type=1326 audit(1755574910.380:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.445544][    C0] vkms_vblank_simulate: vblank timer overrun
[  437.477790][   T30] audit: type=1326 audit(1755574910.410:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.500165][    C0] vkms_vblank_simulate: vblank timer overrun
[  437.587588][   T30] audit: type=1326 audit(1755574910.410:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.648630][T12052] loop7: detected capacity change from 0 to 512
[  437.691987][T12052] syz.7.1726 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  437.814645][   T30] audit: type=1326 audit(1755574910.410:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.865194][   T30] audit: type=1326 audit(1755574910.410:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.893400][   T30] audit: type=1326 audit(1755574910.410:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  437.915792][    C0] vkms_vblank_simulate: vblank timer overrun
[  438.042088][   T30] audit: type=1326 audit(1755574910.410:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  438.064810][    C0] vkms_vblank_simulate: vblank timer overrun
[  438.114935][   T30] audit: type=1326 audit(1755574910.410:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc8f798ebe9 code=0x7ffc0000
[  438.185541][   T30] audit: type=1326 audit(1755574910.420:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12044 comm="syz.2.1721" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fc8f798d457 code=0x7ffc0000
[  438.238185][T12064] macvtap0: refused to change device tx_queue_len
[  438.260430][T12068] pimreg: entered allmulticast mode
[  438.276821][T12072] pimreg: left allmulticast mode
[  438.653919][T12084] netlink: 'syz.7.1733': attribute type 4 has an invalid length.
[  438.724930][T12088] loop5: detected capacity change from 0 to 2048
[  438.922587][ T6011] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  439.082450][ T6011] usb 7-1: Using ep0 maxpacket: 16
[  439.101656][ T6011] usb 7-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  439.142386][ T6011] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  439.178645][ T6011] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  439.235102][ T6011] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  439.265673][ T6011] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  439.298787][ T6011] usb 7-1: Product: syz
[  439.305745][ T6011] usb 7-1: Manufacturer: syz
[  439.319619][ T6011] usb 7-1: SerialNumber: syz
[  439.335935][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  439.342592][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  439.344778][T12110] netlink: 80 bytes leftover after parsing attributes in process `syz.9.1747'.
[  439.767516][ T6011] usb 7-1: 0:2 : does not exist
[  439.877236][T12125] netlink: 'syz.8.1752': attribute type 4 has an invalid length.
[  439.877506][T12124] loop5: detected capacity change from 0 to 1024
[  439.983588][T12124] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  440.001576][T12124] ext4 filesystem being mounted at /316/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  440.031253][T12124] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: block 3: comm syz.5.1751: lblock 3 mapped to illegal pblock 3 (length 13)
[  440.144851][T12131] loop8: detected capacity change from 0 to 1024
[  440.179766][T12124] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117
[  440.221105][T12131] EXT4-fs: Ignoring removed bh option
[  440.249972][T12124] EXT4-fs (loop5): This should not happen!! Data will be lost
[  440.249972][T12124] 
[  440.270391][T12139] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(7)
[  440.272206][T12131] EXT4-fs: inline encryption not supported
[  440.276937][T12139] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  440.303802][T12139] vhci_hcd vhci_hcd.0: Device attached
[  440.369391][T12140] vhci_hcd: connection closed
[  440.379787][T12131] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  440.395565][ T7008] vhci_hcd: stop threads
[  440.406682][ T7008] vhci_hcd: release socket
[  440.423742][ T7008] vhci_hcd: disconnect device
[  440.454764][ T5868] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.475469][T12131] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 2: comm syz.8.1755: lblock 2 mapped to illegal pblock 2 (length 1)
[  440.492485][ T5932] vhci_hcd: vhci_device speed not set
[  440.540430][T12131] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 48: comm syz.8.1755: lblock 0 mapped to illegal pblock 48 (length 1)
[  440.559205][T12131] EXT4-fs error (device loop8): ext4_acquire_dquot:6937: comm syz.8.1755: Failed to acquire dquot type 0
[  440.575751][T12131] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  440.589522][ T6011] usb 7-1: 1:0: failed to get current value for ch 0 (-22)
[  440.649284][T12131] EXT4-fs error (device loop8): ext4_evict_inode:254: inode #11: comm syz.8.1755: mark_inode_dirty error
[  440.700637][T12131] EXT4-fs warning (device loop8): ext4_evict_inode:257: couldn't mark inode dirty (err -117)
[  440.705678][ T6011] usb 7-1: USB disconnect, device number 8
[  440.747611][T12131] EXT4-fs (loop8): 1 orphan inode deleted
[  440.762521][ T9728] EXT4-fs error (device loop8): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:44: lblock 1 mapped to illegal pblock 1 (length 1)
[  441.242244][T12131] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  441.270994][ T9728] EXT4-fs error (device loop8): ext4_release_dquot:6973: comm kworker/u8:44: Failed to release dquot type 0
[  441.323621][T12131] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  441.338557][T12131] EXT4-fs error (device loop8): __ext4_get_inode_loc:4861: comm syz.8.1755: Invalid inode table block 1 in block_group 0
[  441.397589][T12131] EXT4-fs error (device loop8) in ext4_reserve_inode_write:6334: Corrupt filesystem
[  441.438675][T12131] EXT4-fs error (device loop8): ext4_quota_off:7221: inode #3: comm syz.8.1755: mark_inode_dirty error
[  441.736571][T12165] loop8: detected capacity change from 0 to 128
[  442.148768][T12180] loop6: detected capacity change from 0 to 2048
[  442.201207][T12180] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.236335][T12180] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  442.315852][T12180] EXT4-fs (loop6): Remounting filesystem read-only
[  442.542204][T12190] loop2: detected capacity change from 0 to 512
[  442.625308][T12190] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.1775: corrupted in-inode xattr: invalid ea_ino
[  442.640090][T12190] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1775: couldn't read orphan inode 15 (err -117)
[  442.655449][T12190] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.894030][ T5866] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.948686][T12197] 9pnet_fd: Insufficient options for proto=fd
[  443.042337][   T30] kauditd_printk_skb: 32 callbacks suppressed
[  443.042359][   T30] audit: type=1326 audit(1755574916.000:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa7de585ba7 code=0x7ffc0000
[  443.090387][ T5226] udevd[5226]: worker [6751] terminated by signal 33 (Unknown signal 33)
[  443.134889][ T5226] udevd[5226]: worker [6751] failed while handling '/devices/virtual/block/loop8'
[  443.167844][   T30] audit: type=1326 audit(1755574916.000:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa7de52add9 code=0x7ffc0000
[  443.191630][ T5226] udevd[5226]: worker [6858] terminated by signal 33 (Unknown signal 33)
[  443.249244][ T5226] udevd[5226]: worker [6858] failed while handling '/devices/virtual/block/loop2'
[  443.273036][   T30] audit: type=1326 audit(1755574916.000:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.413688][   T30] audit: type=1326 audit(1755574916.010:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.469333][   T30] audit: type=1326 audit(1755574916.040:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.507071][   T30] audit: type=1326 audit(1755574916.040:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.529436][    C1] vkms_vblank_simulate: vblank timer overrun
[  443.544369][   T30] audit: type=1326 audit(1755574916.040:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.569940][   T30] audit: type=1326 audit(1755574916.040:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.640110][   T30] audit: type=1326 audit(1755574916.040:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.662533][    C1] vkms_vblank_simulate: vblank timer overrun
[  443.674669][   T30] audit: type=1326 audit(1755574916.050:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12200 comm="syz.7.1777" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa7de58ebe9 code=0x7ffc0000
[  443.697021][    C1] vkms_vblank_simulate: vblank timer overrun
[  443.846464][T12231] netlink: 64 bytes leftover after parsing attributes in process `syz.8.1790'.
[  444.514880][T12247] loop2: detected capacity change from 0 to 2048
[  445.012639][T12257] loop8: detected capacity change from 0 to 512
[  445.025464][T12257] EXT4-fs: Ignoring removed orlov option
[  445.086988][T12257] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  445.095811][T12257] EXT4-fs (loop8): blocks per group (95) and clusters per group (32768) inconsistent
[  445.158742][T12258] fuse: Bad value for 'fd'
[  446.907928][T12277] netlink: 64 bytes leftover after parsing attributes in process `syz.8.1807'.
[  447.390294][T12266] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1804'.
[  447.421920][T12285] 9pnet_fd: Insufficient options for proto=fd
[  447.792388][ T6005] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  448.392571][ T6005] usb 8-1: Using ep0 maxpacket: 32
[  448.400261][ T6005] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA6, changing to 0x86
[  448.427610][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 7
[  448.461309][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[  448.496601][ T6005] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  448.527685][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  448.596158][ T6005] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  448.662210][ T6005] usb 8-1: New USB device found, idVendor=05ef, idProduct=020a, bcdDevice=91.36
[  448.692075][ T6005] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.712475][ T6005] usb 8-1: Product: syz
[  448.716683][ T6005] usb 8-1: Manufacturer: syz
[  448.738175][ T6005] usb 8-1: SerialNumber: syz
[  448.759097][ T6005] usb 8-1: config 0 descriptor??
[  449.072758][ T5854] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  449.190148][T12312] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1820'.
[  449.200287][T12312] bridge_slave_1: left allmulticast mode
[  449.214616][T12312] bridge_slave_1: left promiscuous mode
[  449.220461][T12312] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.232588][ T5854] usb 6-1: Using ep0 maxpacket: 16
[  449.264834][ T5854] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  449.288423][ T5854] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  449.306706][ T5854] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  449.316773][T12312] bridge_slave_0: left allmulticast mode
[  449.354557][T12312] bridge_slave_0: left promiscuous mode
[  449.364944][ T5854] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  449.378036][T12312] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.390473][ T5854] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  449.525994][T12316] binder: 12313:12316 ioctl 4018620d 0 returned -22
[  449.543833][ T5854] usb 6-1: Product: syz
[  449.548012][ T5854] usb 6-1: Manufacturer: syz
[  449.552846][ T5854] usb 6-1: SerialNumber: syz
[  450.011797][ T5854] usb 6-1: 0:2 : does not exist
[  450.094188][ T5991] usb 8-1: USB disconnect, device number 3
[  450.423019][T12329] netlink: 'syz.2.1826': attribute type 21 has an invalid length.
[  450.447936][T12329] netlink: 132 bytes leftover after parsing attributes in process `syz.2.1826'.
[  450.518502][T12329] netlink: 'syz.2.1826': attribute type 1 has an invalid length.
[  450.781296][T12334] loop8: detected capacity change from 0 to 40427
[  450.823509][T12334] F2FS-fs (loop8): invalid crc value
[  450.890031][T12334] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  450.900287][T12334] F2FS-fs (loop8): Start checkpoint disabled!
[  450.933069][T12334] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  451.015969][   T30] kauditd_printk_skb: 46 callbacks suppressed
[  451.016037][   T30] audit: type=1800 audit(1755574923.970:472): pid=12339 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1829" name="file1" dev="loop8" ino=10 res=0 errno=0
[  451.148846][T12339] bio_check_eod: 101 callbacks suppressed
[  451.148917][T12339] syz.8.1829: attempt to access beyond end of device
[  451.148917][T12339] loop8: rw=2049, sector=77824, nr_sectors = 984 limit=40427
[  451.226357][ T5854] usb 6-1: 1:0: failed to get current value for ch 0 (-22)
[  451.395848][ T5854] usb 6-1: USB disconnect, device number 9
[  451.445535][ T8667] kworker/u8:37: attempt to access beyond end of device
[  451.445535][ T8667] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  451.459861][ T8667] CPU: 1 UID: 0 PID: 8667 Comm: kworker/u8:37 Not tainted 6.17.0-rc2-syzkaller-00028-gbe48bcf004f9 #0 PREEMPT(full) 
[  451.459895][ T8667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  451.459912][ T8667] Workqueue: writeback wb_workfn (flush-7:8)
[  451.459950][ T8667] Call Trace:
[  451.459958][ T8667]  <TASK>
[  451.459968][ T8667]  dump_stack_lvl+0x189/0x250
[  451.459999][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.460029][ T8667]  ? __pfx_dump_stack_lvl+0x10/0x10
[  451.460057][ T8667]  ? __pfx_queue_work_on+0x10/0x10
[  451.460082][ T8667]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  451.460114][ T8667]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  451.460152][ T8667]  f2fs_handle_critical_error+0x37c/0x540
[  451.460192][ T8667]  f2fs_write_end_io+0x886/0xb60
[  451.460229][ T8667]  __submit_merged_bio+0x27a/0x6a0
[  451.460266][ T8667]  __submit_merged_write_cond+0x255/0x530
[  451.460304][ T8667]  f2fs_write_data_pages+0x261d/0x3000
[  451.460366][ T8667]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  451.460418][ T8667]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  451.460469][ T8667]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  451.460513][ T8667]  ? trace_f2fs_writepages+0x7f/0x200
[  451.460547][ T8667]  ? f2fs_write_node_pages+0x478/0x6e0
[  451.460577][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.460609][ T8667]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[  451.460645][ T8667]  ? f2fs_update_inode+0x13d9/0x2620
[  451.460678][ T8667]  ? f2fs_write_inode+0x3fb/0x5f0
[  451.460711][ T8667]  ? __pfx_f2fs_balance_fs+0x10/0x10
[  451.460746][ T8667]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  451.460784][ T8667]  do_writepages+0x32e/0x550
[  451.460817][ T8667]  ? unwind_next_frame+0xa5/0x2390
[  451.460848][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.460882][ T8667]  __writeback_single_inode+0x145/0xff0
[  451.460914][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.460941][ T8667]  ? do_raw_spin_unlock+0x122/0x240
[  451.460975][ T8667]  writeback_sb_inodes+0x6c7/0x1010
[  451.461015][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461045][ T8667]  ? fprop_reflect_period_percpu+0x6b/0x330
[  451.461083][ T8667]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  451.461143][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461170][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.461194][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461228][ T8667]  wb_writeback+0x43b/0xaf0
[  451.461265][ T8667]  ? queue_io+0x3d1/0x590
[  451.461297][ T8667]  ? __pfx_wb_writeback+0x10/0x10
[  451.461333][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.461360][ T8667]  wb_workfn+0x409/0xef0
[  451.461403][ T8667]  ? __pfx_wb_workfn+0x10/0x10
[  451.461427][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461454][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.461478][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461505][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.461528][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461560][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461587][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.461610][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461636][ T8667]  ? lock_acquire+0x5f/0x360
[  451.461671][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461701][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.461723][ T8667]  ? process_scheduled_works+0x9ef/0x17b0
[  451.461746][ T8667]  ? process_scheduled_works+0x9ef/0x17b0
[  451.461771][ T8667]  process_scheduled_works+0xae1/0x17b0
[  451.461815][ T8667]  ? __pfx_process_scheduled_works+0x10/0x10
[  451.461845][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.461878][ T8667]  worker_thread+0x8a0/0xda0
[  451.461922][ T8667]  kthread+0x711/0x8a0
[  451.461953][ T8667]  ? __pfx_worker_thread+0x10/0x10
[  451.461977][ T8667]  ? __pfx_kthread+0x10/0x10
[  451.462004][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.462034][ T8667]  ? srso_alias_return_thunk+0x5/0xfbef5
[  451.462061][ T8667]  ? rcu_is_watching+0x15/0xb0
[  451.462084][ T8667]  ? __pfx_kthread+0x10/0x10
[  451.462114][ T8667]  ret_from_fork+0x3fc/0x770
[  451.462141][ T8667]  ? __pfx_ret_from_fork+0x10/0x10
[  451.462170][ T8667]  ? __switch_to_asm+0x39/0x70
[  451.462201][ T8667]  ? __switch_to_asm+0x33/0x70
[  451.462232][ T8667]  ? __pfx_kthread+0x10/0x10
[  451.462265][ T8667]  ret_from_fork_asm+0x1a/0x30
[  451.462307][ T8667]  </TASK>
[  451.878219][ T8667] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  451.894573][ T6760] udevd[6760]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  452.041485][T12348] netlink: 'syz.2.1834': attribute type 4 has an invalid length.
[  452.281513][T12177] Set syz1 is full, maxelem 65536 reached
[  452.354713][ T7080] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  452.394248][T12357] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1840'.
[  452.432942][T12357] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1840'.
[  452.801785][T12362] binder: 12359:12362 ioctl 4018620d 0 returned -22
[  453.171622][T12383] netlink: 300 bytes leftover after parsing attributes in process `syz.9.1846'.
[  453.863188][T12386] kernel profiling enabled (shift: 17)
[  455.191635][T12390] netlink: 'syz.2.1850': attribute type 4 has an invalid length.
[  455.278894][T12396] loop6: detected capacity change from 0 to 164
[  455.298336][T12398] syz_tun: entered allmulticast mode
[  455.320270][T12396] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  455.409839][T12397] syz_tun: left allmulticast mode
[  455.470228][T12400] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  455.539928][T12400] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  455.772209][T12400] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  455.857617][T12411] macvtap0: refused to change device tx_queue_len
[  455.907072][T12400] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  456.065390][ T9728] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  456.682516][ T9737] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  456.807462][ T9737] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  456.822445][ T9728] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  457.427872][T12438] binder: 12433:12438 ioctl 4018620d 0 returned -22
[  457.668974][T12453] loop9: detected capacity change from 0 to 128
[  457.874432][T12458] netlink: 300 bytes leftover after parsing attributes in process `syz.5.1872'.
[  458.112525][T12458] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1872'.
[  458.170902][T12461] loop2: detected capacity change from 0 to 164
[  458.215313][T12461] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  458.892914][T12490] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1882'.
[  459.128738][T12497] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1885'.
[  459.206226][T12497] vlan2: entered promiscuous mode
[  459.216492][T12497] syz_tun: entered promiscuous mode
[  459.364361][T12501] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1886'.
[  460.030250][   T30] audit: type=1326 audit(1755574932.990:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.6.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  460.057798][T12509] binder: 12507:12509 ioctl 4018620d 0 returned -22
[  460.114494][   T30] audit: type=1326 audit(1755574933.000:474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.6.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  460.209951][   T30] audit: type=1326 audit(1755574933.000:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12515 comm="syz.6.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  460.242979][ T5991] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  460.478615][T12532] loop7: detected capacity change from 0 to 512
[  460.482428][ T5991] usb 3-1: Using ep0 maxpacket: 8
[  460.520776][ T5991] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  460.593285][T12534] loop8: detected capacity change from 0 to 512
[  460.600992][T12534] EXT4-fs: Ignoring removed orlov option
[  460.756267][T12534] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  460.764908][T12534] EXT4-fs (loop8): blocks per group (95) and clusters per group (32768) inconsistent
[  461.532387][ T5991] usb 3-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  461.535031][T12532] loop7: detected capacity change from 0 to 512
[  462.226745][ T5991] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  462.263246][T12537] loop5: detected capacity change from 0 to 164
[  462.270491][   T30] audit: type=1326 audit(1755574935.220:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.276620][ T5991] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  462.322256][T12537] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  462.417609][ T5991] usb 3-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  462.446525][   T30] audit: type=1326 audit(1755574935.220:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.505939][ T5991] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  462.541636][T12544] loop6: detected capacity change from 0 to 512
[  462.579322][ T5991] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  462.624379][T12544] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  462.626846][   T30] audit: type=1326 audit(1755574935.220:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.712601][   T30] audit: type=1326 audit(1755574935.220:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.735318][   T30] audit: type=1326 audit(1755574935.220:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.758189][   T30] audit: type=1326 audit(1755574935.220:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.761426][T12544] EXT4-fs (loop6): orphan cleanup on readonly fs
[  462.781096][   T30] audit: type=1326 audit(1755574935.220:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12536 comm="syz.6.1898" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f85cc58ebe9 code=0x7ffc0000
[  462.997168][T12544] EXT4-fs warning (device loop6): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  463.018720][T12544] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  463.026955][T12544] EXT4-fs error (device loop6): ext4_validate_block_bitmap:441: comm syz.6.1902: bg 0: block 40: padding at end of block bitmap is not set
[  463.045357][T12544] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  463.056893][T12544] EXT4-fs (loop6): 1 truncate cleaned up
[  463.077056][T12544] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  463.247671][ T7080] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  463.354522][T12559] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1907'.
[  463.507248][T12563] netlink: 12 bytes leftover after parsing attributes in process `syz.9.1909'.
[  463.588792][T12562] veth0_to_team: entered promiscuous mode
[  463.606158][T12562] veth0_to_team: entered allmulticast mode
[  463.689633][ T5991] usb 3-1: can't set config #16, error -71
[  463.700080][ T5991] usb 3-1: USB disconnect, device number 6
[  464.134700][    T9] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  464.312352][    T9] usb 6-1: Using ep0 maxpacket: 16
[  464.327035][    T9] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  464.337061][    T9] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  464.462741][    T9] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  464.513220][    T9] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  464.544745][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  464.567285][    T9] usb 6-1: Product: syz
[  464.602110][    T9] usb 6-1: Manufacturer: syz
[  464.608579][    T9] usb 6-1: SerialNumber: syz
[  464.760966][T12596] 9pnet_fd: Insufficient options for proto=fd
[  464.955408][T12605] netlink: 300 bytes leftover after parsing attributes in process `syz.8.1926'.
[  465.057108][    T9] usb 6-1: 0:2 : does not exist
[  465.073416][T12611] netlink: 44 bytes leftover after parsing attributes in process `syz.8.1926'.
[  465.642601][ T5932] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  465.858781][ T5932] usb 3-1: Using ep0 maxpacket: 8
[  466.194033][    T9] usb 6-1: 1:0: failed to get current value for ch 0 (-22)
[  466.727983][ T5932] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[  466.845332][ T5932] usb 3-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  467.216398][    T9] usb 6-1: USB disconnect, device number 10
[  467.369255][ T5932] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  467.552061][T12630] loop8: detected capacity change from 0 to 512
[  467.603529][ T5932] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  467.640130][T12630] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  467.669788][T12630] EXT4-fs (loop8): orphan cleanup on readonly fs
[  467.687519][T12630] __quota_error: 30 callbacks suppressed
[  467.687538][T12630] Quota error (device loop8): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  467.722544][ T6760] udevd[6760]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  467.743106][ T5932] usb 3-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  467.830526][T12630] EXT4-fs warning (device loop8): ext4_enable_quotas:7172: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  467.845691][ T5932] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  467.875112][T12630] EXT4-fs (loop8): Cannot turn on quotas: error -117
[  467.926125][T12630] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.1934: bg 0: block 40: padding at end of block bitmap is not set
[  467.952174][ T5932] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.980819][T12630] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  468.025226][T12630] EXT4-fs (loop8): 1 truncate cleaned up
[  468.065673][T12630] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  468.308605][ T8830] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  468.327560][   T30] audit: type=1326 audit(1755574941.290:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.367536][   T30] audit: type=1326 audit(1755574941.330:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.402417][   T30] audit: type=1326 audit(1755574941.330:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.520887][   T30] audit: type=1326 audit(1755574941.330:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.674866][   T30] audit: type=1326 audit(1755574941.330:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.788224][   T30] audit: type=1326 audit(1755574941.340:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.910302][ T5932] usb 3-1: can't set config #16, error -71
[  468.956097][ T5932] usb 3-1: USB disconnect, device number 7
[  468.964755][   T30] audit: type=1326 audit(1755574941.340:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  468.979817][T12660] netlink: 300 bytes leftover after parsing attributes in process `syz.5.1947'.
[  469.092008][   T30] audit: type=1326 audit(1755574941.340:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  469.149686][T12665] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1947'.
[  469.218807][   T30] audit: type=1326 audit(1755574941.340:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12644 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f114e58ebe9 code=0x7ffc0000
[  469.412440][ T5932] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  469.432212][T12674] smc: net device bond0 applied user defined pnetid SYZ0
[  469.565111][ T5932] usb 3-1: Using ep0 maxpacket: 16
[  469.571721][ T5932] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  469.590911][ T5932] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  469.609733][ T5932] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  469.634379][ T5932] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  469.643815][ T5932] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.655031][ T5932] usb 3-1: Product: syz
[  469.659194][ T5932] usb 3-1: Manufacturer: syz
[  469.663931][ T5932] usb 3-1: SerialNumber: syz
[  470.103011][ T5932] usb 3-1: 0:2 : does not exist
[  471.105329][ T5932] usb 3-1: 1:0: failed to get current value for ch 0 (-22)
[  471.152891][ T5932] usb 3-1: USB disconnect, device number 8
[  471.213535][T12731] loop7: detected capacity change from 0 to 512
[  471.214366][ T6760] udevd[6760]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  472.052637][ T5932] usb 6-1: new full-speed USB device number 11 using dummy_hcd
[  472.193177][ T5932] usb 6-1: device descriptor read/64, error -71
[  472.291998][T12755] ------------[ cut here ]------------
[  472.297581][T12755] 'send_pkt()' returns 0, but 65536 expected
[  472.323734][T12755] WARNING: CPU: 1 PID: 12755 at net/vmw_vsock/virtio_transport_common.c:428 virtio_transport_send_pkt_info+0xd11/0xf00
[  472.336787][T12755] Modules linked in:
[  472.341473][T12755] CPU: 1 UID: 0 PID: 12755 Comm: syz.9.1984 Not tainted 6.17.0-rc2-syzkaller-00028-gbe48bcf004f9 #0 PREEMPT(full) 
[  472.355132][T12755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  472.365602][T12755] RIP: 0010:virtio_transport_send_pkt_info+0xd11/0xf00
[  472.372869][T12755] Code: 0f 0b 90 bd f2 ff ff ff eb bc e8 6a 44 66 f6 c6 05 ac 1d 34 04 01 90 48 c7 c7 60 c3 b8 8c 44 89 f6 4c 89 ea e8 00 e4 29 f6 90 <0f> 0b 90 90 e9 e1 fe ff ff e8 41 44 66 f6 90 0f 0b 90 e9 c5 f7 ff
[  472.392846][T12755] RSP: 0018:ffffc90004b5f530 EFLAGS: 00010246
[  472.399233][T12755] RAX: a4c3ef61afb04e00 RBX: 0000000000010000 RCX: 0000000000080000
[  472.407466][T12755] RDX: ffffc90010a06000 RSI: 000000000000dab7 RDI: 000000000000dab8
[  472.416001][T12755] RBP: ffffffff8f877d10 R08: 0000000000000003 R09: 0000000000000004
[  472.424468][T12755] R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: dffffc0000000000
[  472.432488][T12755] R13: 0000000000010000 R14: 0000000000000000 R15: ffff888057603aa4
[  472.440635][T12755] FS:  00007fbc403936c0(0000) GS:ffff888125d1b000(0000) knlGS:0000000000000000
[  472.449635][T12755] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  472.456259][T12755] CR2: 00007f798cbad43b CR3: 000000006c249000 CR4: 0000000000350ef0
[  472.464294][T12755] Call Trace:
[  472.467573][T12755]  <TASK>
[  472.470519][T12755]  virtio_transport_seqpacket_enqueue+0x143/0x1c0
[  472.476987][T12755]  ? __pfx_virtio_transport_seqpacket_enqueue+0x10/0x10
[  472.479076][ T5932] usb 6-1: new full-speed USB device number 12 using dummy_hcd
[  472.483997][T12755]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  472.497868][T12755]  ? do_raw_spin_unlock+0x122/0x240
[  472.503135][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.508778][T12755]  ? remove_wait_queue+0x33/0x120
[  472.514198][T12755]  vsock_connectible_sendmsg+0xac7/0x1050
[  472.519951][T12755]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  472.526568][T12755]  ? __pfx_aa_sk_perm+0x10/0x10
[  472.531442][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.537162][T12755]  ? __pfx_woken_wake_function+0x10/0x10
[  472.542884][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.546801][T12761] netlink: 108 bytes leftover after parsing attributes in process `syz.6.1989'.
[  472.548524][T12755]  ? aa_sock_msg_perm+0xf1/0x1d0
[  472.548555][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.568192][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.573929][T12755]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  472.580113][T12755]  __sock_sendmsg+0x21c/0x270
[  472.584860][T12755]  ____sys_sendmsg+0x52d/0x830
[  472.589640][T12755]  ? __pfx_____sys_sendmsg+0x10/0x10
[  472.595005][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.600746][T12755]  ? import_iovec+0x74/0xa0
[  472.605327][T12755]  ___sys_sendmsg+0x21f/0x2a0
[  472.610016][T12755]  ? __pfx____sys_sendmsg+0x10/0x10
[  472.615864][T12755]  ? __pfx_futex_wake_mark+0x10/0x10
[  472.621652][T12755]  ? __fget_files+0x2a/0x420
[  472.626316][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.631965][T12755]  ? __fget_files+0x3a0/0x420
[  472.632392][ T5932] usb 6-1: device descriptor read/64, error -71
[  472.636747][T12755]  __sys_sendmmsg+0x227/0x430
[  472.647593][T12755]  ? __pfx___sys_sendmmsg+0x10/0x10
[  472.652854][T12755]  ? do_futex+0x333/0x420
[  472.657222][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.661392][T12763] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1988'.
[  472.662969][T12755]  ? rcu_is_watching+0x15/0xb0
[  472.663007][T12755]  __x64_sys_sendmmsg+0xa0/0xc0
[  472.663039][T12755]  do_syscall_64+0xfa/0x3b0
[  472.663078][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.663112][T12755]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.663138][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.663168][T12755]  ? exc_page_fault+0x9f/0xf0
[  472.663206][T12755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.663231][T12755] RIP: 0033:0x7fbc3f58ebe9
[  472.718942][T12755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.720294][T12764] loop2: detected capacity change from 0 to 736
[  472.739272][T12755] RSP: 002b:00007fbc40393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  472.753551][T12755] RAX: ffffffffffffffda RBX: 00007fbc3f7b5fa0 RCX: 00007fbc3f58ebe9
[  472.761541][T12755] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000005
[  472.762769][ T5932] usb usb6-port1: attempt power cycle
[  472.769567][T12755] RBP: 00007fbc3f611e19 R08: 0000000000000000 R09: 0000000000000000
[  472.782995][T12755] R10: 0000000024008094 R11: 0000000000000246 R12: 0000000000000000
[  472.784077][T12764] iso9660: Unknown parameter 'showau¼ú:Akoc'
[  472.790983][T12755] R13: 00007fbc3f7b6038 R14: 00007fbc3f7b5fa0 R15: 00007ffe468d8788
[  472.791024][T12755]  </TASK>
[  472.791037][T12755] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  472.791057][T12755] CPU: 1 UID: 0 PID: 12755 Comm: syz.9.1984 Not tainted 6.17.0-rc2-syzkaller-00028-gbe48bcf004f9 #0 PREEMPT(full) 
[  472.791086][T12755] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  472.791103][T12755] Call Trace:
[  472.791116][T12755]  <TASK>
[  472.791126][T12755]  dump_stack_lvl+0x99/0x250
[  472.791161][T12755]  ? __asan_memcpy+0x40/0x70
[  472.791192][T12755]  ? __pfx_dump_stack_lvl+0x10/0x10
[  472.791225][T12755]  ? __pfx__printk+0x10/0x10
[  472.791268][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.791303][T12755]  vpanic+0x281/0x750
[  472.791334][T12755]  ? __pfx__printk+0x10/0x10
[  472.791370][T12755]  ? __pfx_vpanic+0x10/0x10
[  472.791408][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.791439][T12755]  ? is_bpf_text_address+0x292/0x2b0
[  472.791488][T12755]  panic+0xb9/0xc0
[  472.791518][T12755]  ? __pfx_panic+0x10/0x10
[  472.791560][T12755]  __warn+0x31b/0x4b0
[  472.791590][T12755]  ? virtio_transport_send_pkt_info+0xd11/0xf00
[  472.791627][T12755]  ? virtio_transport_send_pkt_info+0xd11/0xf00
[  472.791661][T12755]  report_bug+0x2be/0x4f0
[  472.791696][T12755]  ? virtio_transport_send_pkt_info+0xd11/0xf00
[  472.791731][T12755]  ? virtio_transport_send_pkt_info+0xd11/0xf00
[  472.791765][T12755]  ? virtio_transport_send_pkt_info+0xd13/0xf00
[  472.791799][T12755]  handle_bug+0x84/0x160
[  472.791824][T12755]  exc_invalid_op+0x1a/0x50
[  472.791849][T12755]  asm_exc_invalid_op+0x1a/0x20
[  472.791874][T12755] RIP: 0010:virtio_transport_send_pkt_info+0xd11/0xf00
[  472.791910][T12755] Code: 0f 0b 90 bd f2 ff ff ff eb bc e8 6a 44 66 f6 c6 05 ac 1d 34 04 01 90 48 c7 c7 60 c3 b8 8c 44 89 f6 4c 89 ea e8 00 e4 29 f6 90 <0f> 0b 90 90 e9 e1 fe ff ff e8 41 44 66 f6 90 0f 0b 90 e9 c5 f7 ff
[  472.791934][T12755] RSP: 0018:ffffc90004b5f530 EFLAGS: 00010246
[  472.791958][T12755] RAX: a4c3ef61afb04e00 RBX: 0000000000010000 RCX: 0000000000080000
[  472.791978][T12755] RDX: ffffc90010a06000 RSI: 000000000000dab7 RDI: 000000000000dab8
[  472.791997][T12755] RBP: ffffffff8f877d10 R08: 0000000000000003 R09: 0000000000000004
[  472.792015][T12755] R10: dffffc0000000000 R11: fffffbfff1bfa1ec R12: dffffc0000000000
[  472.792037][T12755] R13: 0000000000010000 R14: 0000000000000000 R15: ffff888057603aa4
[  472.792084][T12755]  virtio_transport_seqpacket_enqueue+0x143/0x1c0
[  472.792120][T12755]  ? __pfx_virtio_transport_seqpacket_enqueue+0x10/0x10
[  472.792154][T12755]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  472.792189][T12755]  ? do_raw_spin_unlock+0x122/0x240
[  472.792225][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792261][T12755]  ? remove_wait_queue+0x33/0x120
[  472.792298][T12755]  vsock_connectible_sendmsg+0xac7/0x1050
[  472.792352][T12755]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  472.792397][T12755]  ? __pfx_aa_sk_perm+0x10/0x10
[  472.792435][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792468][T12755]  ? __pfx_woken_wake_function+0x10/0x10
[  472.792506][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792535][T12755]  ? aa_sock_msg_perm+0xf1/0x1d0
[  472.792558][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792587][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792616][T12755]  ? __pfx_vsock_connectible_sendmsg+0x10/0x10
[  472.792654][T12755]  __sock_sendmsg+0x21c/0x270
[  472.792689][T12755]  ____sys_sendmsg+0x52d/0x830
[  472.792718][T12755]  ? __pfx_____sys_sendmsg+0x10/0x10
[  472.792749][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792777][T12755]  ? import_iovec+0x74/0xa0
[  472.792808][T12755]  ___sys_sendmsg+0x21f/0x2a0
[  472.792835][T12755]  ? __pfx____sys_sendmsg+0x10/0x10
[  472.792864][T12755]  ? __pfx_futex_wake_mark+0x10/0x10
[  472.792919][T12755]  ? __fget_files+0x2a/0x420
[  472.792939][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.792968][T12755]  ? __fget_files+0x3a0/0x420
[  472.792996][T12755]  __sys_sendmmsg+0x227/0x430
[  472.793026][T12755]  ? __pfx___sys_sendmmsg+0x10/0x10
[  472.793050][T12755]  ? do_futex+0x333/0x420
[  472.793099][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.793128][T12755]  ? rcu_is_watching+0x15/0xb0
[  472.793156][T12755]  __x64_sys_sendmmsg+0xa0/0xc0
[  472.793184][T12755]  do_syscall_64+0xfa/0x3b0
[  472.793220][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.793249][T12755]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.793274][T12755]  ? srso_alias_return_thunk+0x5/0xfbef5
[  472.793302][T12755]  ? exc_page_fault+0x9f/0xf0
[  472.793336][T12755]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  472.793361][T12755] RIP: 0033:0x7fbc3f58ebe9
[  472.793383][T12755] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  472.793408][T12755] RSP: 002b:00007fbc40393038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  472.793433][T12755] RAX: ffffffffffffffda RBX: 00007fbc3f7b5fa0 RCX: 00007fbc3f58ebe9
[  472.793453][T12755] RDX: 0000000000000001 RSI: 0000200000000100 RDI: 0000000000000005
[  472.793470][T12755] RBP: 00007fbc3f611e19 R08: 0000000000000000 R09: 0000000000000000
[  472.793487][T12755] R10: 0000000024008094 R11: 0000000000000246 R12: 0000000000000000
[  472.793503][T12755] R13: 00007fbc3f7b6038 R14: 00007fbc3f7b5fa0 R15: 00007ffe468d8788
[  472.793532][T12755]  </TASK>
[  472.797538][T12755] Kernel Offset: disabled